Auto  unity 


Carmakers  have  endorsed  a  plan  calling  for  the 


industry  to  use  a  single  XML-based  data  exchange.  PAGE  10. 


Presence  requested  The  technology  gains 

strength  as  collaboration  and  communication  platform.  PAGE  28 
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Most  clays  at  the  Internet  Storm 
Center  are  pretty  uneventful. 

But  when  Network  World's  Jason 
Meserve  spent  a  clay  with  Storm 


Center  CTO  Johannes  Ullrich, 
rAut  4 1  a  powerful  virus  called  MyDoom-0 


blew  across  the  Internet.  Ullrich 


sprang  Into  action,  battling  the  virus 
until  the  Internet  skies  cleared. 


FURNALD/GR AY 


Vendors  heed  cry  for 
compliance  mgmt.  tools 


LAN  services 
to  get  new  look 


Why  VPLS? 


These  features  ranked  highest  among  308  users  asked  what 
they  wanted  most  from  Ethernet  services  such  as  VPLS. 

0  10  20  30  40  50  60  70  80  90  100 


Connect  sites  in  different  cities  76% 
Enforce  QoS  for  specific  applications  68% 
Aggregate  VLANs  -  68% 

Support  strict  SLAs  68% 


SOURCE:  THE  YANKEE  GROUP.  2004 

Percentages  are  based  on  the  top  two  responses  from  each  user. 


■  BY  TIM  GREENE 

Major  service  providers  could 
begin  offering  high-bandwidth, 
low-cost  Virtual  Private  LAN  Ser¬ 
vices  next  year  if  the  proposed 
standard  for  the  Ethernet/Multi¬ 
protocol  Label  Switching-based 
technology  is  approved  by  year- 
end  as  expected. 

Major  U.S.  carriers  including 
AT&T  and  MCI  are  kicking  the 
tires  on  VPLS  —  a  LAN  extension 
service  that  supports  service-level 
agreements  (SLA)  and  QoS  for 
individual  applications  (see  story 
page  59). 

AT&T  says  it  is  premature  to 
comment  in  detail  but  confirms 
that  the  company  is  working  on  a 
service,  adding  that  there  is  no 
timetable  for  deployment.  MCI 


says  it  is  looking  at  a  variety  of 
Layer  2  technologies  it  could  add 
to  its  existing  IP  VPN  services,  in¬ 
cluding  VPLS.  Verizon  already 


offers  an  Ethernet  service  that 
runs  over  its  MPLS  core  network, 
but  it  is  not  based  on  VPLS. 

See  VPLS,  page  59 


■  BY  DENISE  DUBIE 

Suppliers  of  management  soft¬ 
ware  are  jumping  on  regulatory 
compliance  concerns  by  deliver¬ 
ing  a  raft  of  tools  that  do  every¬ 
thing  from  sound  alerts  when 
systems  drift  out  of  whack  to 
automatically  remediate  prob¬ 


lems  and  generate  reports  that 
can  be  used  in  audits. 

Management  veterans  such  as 
Computer  Associates  and  niche 
players  such  as  Ecora  are  betting 
that  businesses  faced  with  penal¬ 
ties  ranging  from  $100  for  inad¬ 
vertent  violations  to  $250,000  for 
See  Compliance,  page  14 


|  A  Wider  Net 

Will  the  real  Bill  Gates  please  stand  up? 


Billionaires  they’re  not,  but  Gates 
impersonators  are  cashing  in. 

■  BY  JOHN  FONTANA 

not  only  pays  to  be  Bill  Gates,  it  also  pays 
to  look  like  him.  Just  ask  John  Ranlett  and 
Steve  Sires,  two  Gates  impersonators  who 
don’t  have  to  dress  up  to  look  like  the  software 
maven.and  in  a  truth-is-stranger-than-fiction  twist 
live  within  10  miles  of  each  other  and  not  far 
from  the  Microsoft  campus. 

“I  tell  people  it’s  the  water,” says  Sires,  who  re 
calls  a  man  who  walked  up  to  him  in  a  grocery 


store,  stared  into  his  face  and  said, “same  father, 
different  mother”  before  walking  away  without 
another  word. 

Sires,  who  is  three  inches  shorter  and  two  years 

See  Impersonators,  page  60 


Pick  the  real  Gates.  Turn  to  page  60  for  the  answer. 
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AVAVA 

a  higher  plane 
of  communication 


WHAT’S  IN  A  NAME?  Well,  if  you’ve  got  a  lot 

of  them  on  your  voice  and  data  equipment, 

moving  to  IP  without  breaking  the  bank  can 

seem  pretty  daunting.  Avaya  makes  it  easy  for 

you  to  jump  right  in,  efficiently,  reliably,  and 

securely.  As  the  world  leader  in  enterprise  IP 

telephony,  our  solutions  are  specially  designed 

with  industry  standards-based  technology  and 

open  architecture.  They  layer  right  on  top  of  your 

existing  network  and  work  with  almost  every 

other  brand.  So  with  Avaya,  you  can  keep  up  to 

85%*  of  your  current  investment.  Avaya  can  also 

turn  your  call  center  into  a  strategic  IP  contact 

center,  easily  and  seamlessly.  We  help  you  go  to 

IP  right  away,  no  matter  what  names  are  on  your 

list.  To  learn  how  we  can  work  with  what  you 

have,  see  “Best  Practices  to  IP  Deployment  in  a 

Multi-Vendor  Environment”  at  avaya.com/seehow. 

IP  Telephony 

Contact  Centers 

Unified  Communication 

Services 

Doesn’t  matter  what  their  name  is. 

AVAYA  IP  TELEPHONY 

SOLUTIONS 

work  with  them  all. 


•Based  on  historical  results.  Individual  results  may  vary  depending  upon  your  specific  network  environment. 

?  2004.  Avaya  Inc  AH  Rights  Reserved  Avaya,  the  Avaya  Logo,  and  all  trademarks  identified  by  or  '»  are  trademarks  ol  Avaya  Inc.  and  may  be  registered  in  certain  jurisdictions.  Alt  other  liademarks  are  the  property  of  their  respective  owner- 
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FASTER 


Introducing  Sun  Fire~  Servers  Powered  by  AMD  Opteron 


The  Solaris  Operating  System  and  Linux  are  up  to  45%  faster  than  comparable  32-bit  systems1  wlj 
servers  featuring  screaming  AMD  Opteron  processors. 

Add  the  Sun  Java  Enterprise  System  -  Sun’s  entire  infrastructure  portfolio  of  software  -  and  Sul 
experience  the  full  Sun  systems  advantage.  Engineered  to  deliver  extreme  performance  at  comf 

Purchase  a  subscription  to  the  Java  Enterprise  Developer  Promotion  by  September  30,  2004  and  get  a  free*  Sun  Fire  V20z  AMD 
Opteron-based  server.2  Sign  up  today  at  sun.com/jes. 


microsystems 

The  Network  is  the  Computer 


3  V20z 
STARTING 
i  LIST  PRICE 
I  (USD) 


AM  D  a 


Opteron  SOLARIS  Java 


OPT  FOR  SUN  AND  AMD  OPTERON  AT 

SUN.COM/V20Z 

OROAtL  800.SUN.0404** 


1.  BASED  ON  TESTS  WITH  AMD  OPTERON  VS.  3.2  GHZ  XEON  RUNNING  LINUX,  AMD  OPTERON  RAN  45%  FASTER  ON  SPECWEB  99SSL  -  BASED  ON  PUBLISHED  DATA  FROM  WWW.SPEC.ORG  1/22/04.  FOR  SOLARIS,  OS  MICROBENCHMARKS  PERFORMED  AN  AVERAGE 
42%  FASTER  ON  AN  AMD  OPTERON  PROCESSOR  MODEL  246  (2.0  GHZ)  BASED  SYSTEM  COMPARED  TO  A  3.2  GHZ  XEON  SYSTEM.  2.  OFFER  VALID  IN  THE  U  S.  AND  THROUGH  SUN  STORE  ONLY  PROMOTION  VALID  THROUGH  SEPTEMBER  30,  2004  FOR  A  LIMITED 
TIME  ONLY.  GET  THE  JAVA  ENTERPRISE  DEVELOPER  PROMOTION,  A  VALUE  OF  OVER  U.S.  $7000,  FOR  ONLY  U.S.  $1499  PER  YEAR  FOR  A  3-YEAR  SUBSCRIPTION.  SEE  WEBSITE  FOR  DETAILS.  3.  PRICING  IS  U  S  LIST  PRICE  ALL  PRICES  QUOTED  ARE  IN  U  S  DOLLARS 
'  APPLICABLE  TAXES  AND  SHIPPING  FEES  WILL  APPLY.  TAXES  AND  SHIPPING  COSTS  ARE  NOT  INCLUDED  IN  THIS  FREE  SERVER  OFFER.  ”  TOLL-FREE  NUMBER  AVAILABLE  IN  THE  UNITED  STATES.  CANADA  AND  INTERNATIONAL  AMERICAS  ONLY 
c  2004  SUN  MICROSYSTEMS.  INC  ALL  RIGHTS  RESERVED.  SUN.  SUN  MICROSYSTEMS,  THE  SUN  LOGO,  SOLARIS.  THE  SOURIS  LOGO.  JAVA.  THE  JAVA  LOGO,  SUN  FIRE  AND  THE  NETWORK  IS  THE  COMPUTER  ARE  TRADEMARKS  OR  REGISTERED  TRADEMARKS 
OF  SUN  MICROSYSTEMS,  INC.  IN  THE  UNITED  STATES  AND  OTHER  COUNTRIES.  AMD,  THE  AMD  ARROW  LOGO.  AMD  OPTERON  AND  COMBINATIONS  THEREOF,  ARE  TRADEMARKS  OF  ADVANCED  MICRO  DEVICES.  INC. 
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Voice  over  Wi-Fi  keeps  nurses  on  call.  Page  46. 
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to  the  test 


CLEAR  CHOICE  (H 


An  exclusive  look  at  Extreme’s  new 
10G  Ethernet  workgroup  swtah. 
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Exclusive  

Network  World  Fusion  Radio: 

Microsoft  on  Sender  ID 

Get  the  lowdown  on  Sender  ID,  a  new  framework  being  considered  by  the 
IETF  and  pushed  by  AOL  and  Microsoft  that's  designed  to  authenticate 
mail  senders  and  help  eliminate  spam  and  phishing  attacks.  George  Webb, 
business  manager  of  Microsoft's  Safety,  Technology  and  Strategy  Group, 
joins  us  to  discuss  the  potential  impact  of  Sender  ID  on  your  organization, 
DocFinder:  3538 

You've  Got  the  Power  Survey 

Spread  your  influence  by  casting  your  votes  in  this  first-of-its-kind  survey 
gauging  crucial  questions  of  industry  power,  from  executive  hair  styles  to 
comedic  appeal.  DocFinder:  3236 

Network  Encyclopedia 

Get  definitions  for  the  technologies,  hardware,  protocols,  standards  and 
more  behind  networking.  DocFinder:  5548 

Forum:  Novell  shoots  blanks  on  Linux  offer 

Wired  Windows  columnist  Dave  Kearns  took  Novell  to  task  for  its 
distribution  (or  lack  thereof)  of  its  Novell  Linux  Technical  Resource  Kit. 

Readers  took  Kearns  to  task  in  this  forum.  Read  his  column,  then  add 
your  thoughts.  DocFinder:  3539 

Breaking  News 

Go  online  for  breaking  news  every  day.  DocFinder:  6342 
Free  e-mail  newsletters 

Sign  up  for  any  of  more  than  40  newsletters  on  key  network  topics. 

DocFinder:  6343 
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Columnists 

The  Wireless  Wizards 

What’s  the  best  way  to  authenticate  wireless  users? 

The  Wizards  answer  a  reader  who's  setting  up  a  wireless  net¬ 
work  for  a  college.  He  wants  it  to  have  authentication  logon  — 
like  when  traveling  at  airports  —  and  wants  to  know  what  soft¬ 
ware  is  used  in  public  places  to  handle  automated  logon/sign-up. 

DocFinder:  3540 

Telework  Beat 

Beyond  ergonomics 

Net.Worker  Managing  Editor  Toni  Kistner  examines  new  research 
that  aims  to  reduce  the  risk  of  home-office  hazards. 

DocFinder:  3541 

Small-Business  Tech 

Security  appliance  for  nervous  types 
Columnist  James  Gaskin  looks  at  a  new  ServGate  appliance 
that  offers  flexibility,  but  whose  partnership  with  Dell  raises 
questions  DocFinder:  3542 

HomeBase 

Going  mobile 

Columnist  Steve  Uifelder  debates  the  wisdom  of  dumping  his 
business  landline  for  a  cel  phone,  DocFinder:  3543 

Seminars  and  events 


Weekly  Webcast  Newsletter 

The  Webcast  Newsletter  brings  you  information  on  Webcasts  on 
Network  World  Fusion  —  your  24-7  source  for  the  latest  solu¬ 
tions  and  strategies,  with  links,  resources  and  answers  you 
need.  Our  Webcasts  are  highly  focused,  single-topic  briefings 
from  experts  in  technology.  DocFinder:  2542 

What  is  DocFinder? 

We’ve  made  it  easy  to  access  articles  and  resources 
online.  Simply  enter  the  four-digit  DocFinder  number  in 
the  search  box  on  the  home  page,  and  you’ll  jump 
directly  to  the  requested  information. 
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Spyware  can  mess  up  XP  SP2  installations 

■  Microsoft  last  week  warned  Windows  XP  users  to  scour  their  sys¬ 
tems  for  spyware  before  downloading  the  free  security  updates, 
called  Service  Pack  2.  An  Associated  Press  report  quoted  Microsoft 
executives  saying  some  spyware  could  cause  computers  to  freeze 
up  upon  installation.  Spyware,  which  typically  attaches  to  down¬ 
loaded  software  such  as  file-sharing  programs,  tracks  behavior,  trig¬ 
gers  pop-up  ads  and  can  otherwise  cause  computer  problems. 
Programs  such  as  Ad-Aware  and  SpySweeper  can  clean  computers 
of  the  nuisance.  Microsoft  recommends  users  clean  their  PCs  of  spy- 
ware  and  back  up  their  data  before  turning  on  the  auto  update  fea¬ 
ture  that  downloads  SP2.  Microsoft  said  several  million  businesses 
have  downloaded  the  product. 

Nortel:  More  angst 

■  Nortel  last  week  said  it  again  would  delay  its  restated  financials. The  beleaguered  net¬ 
work  company  said  it  would  need  another  month  to  complete  its  audit  and  file  restated 
financials.  Nortel  said  in  a  statement  that  “the  volume  and  complexity  of  the  work 
involved”  in  the  cleaning  up  and  restating  of  its  financials  means  it  will  miss  its  Sept.  30  fil¬ 
ing  deadline  for  2003  and  the  first  half  of  2004,The  vendor  stresses  that  this  is  a  paperwork 
issue  and  wants  to  make  sure  that  it  conducts  its  restatements  thoroughly  and  accurately 
Those  promises  might  not  prevent  further  troubles  for  Nortel,  which  has  promised  to 
restate  results  going  back  to  2001  after  an  accounting  scandal  that  led  to  criminal  investi¬ 
gation  by  the  Royal  Canadian  Mounted  Police  and  the  U.S.  Attorney’s  office  in  Dallas.The 
company  also  faces  civil  probes  by  the  U.S.  Securities  and  Exchange  Commission  and 
the  Ontario  Securities  Commission. 

IM  picking  up  steam 

■  More  than  four  out  of  10  Americans  use  instant  messaging,  and  about  1 1  million  use  it 
at  work  but  have  mixed  feelings  about  its  capability  to  encourage  productivity  and  foster 
collaboration,  according  to  a  survey  released  last  week  by  the  Pew  Internet  &  American 
Life  Project.  In  the  survey  68%  of  those  who  use  IM  at  work  say  it  is  a  mixed  blessing  but 
mostly  a  positive  experience,  while  11%  say  they  can’t  live  without  it.  But  10%  said  they 
wish  it  would  go  away  When  asked  if  IM  helps  improve  teamwork,  40%  said  it  did  and 
50%  said  it  saves  time  on  various  tasks.  But  more  than  one-quarter  of  respondents  said  IM 
had  no  impact  on  saving  time.  In  addition,  47%  said  IM  provides  moments  of  relief  from 


“Make  coffee,  not  war.” 


David  Rawley  of 
Odenton,  Md.,  is  the  win¬ 
ner  of  our  latest  Weekly 
Caption  Contest.  Check  in  every  Monday  for  the  start 
of  a  new  contest. 
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brotherly  love  more  than  a  city  that  offers 
or  low-cost  wireless  'Net  access  to  its  citizens? 
The  Associated  Press  reports  that 
are  exploring  a  $10  million 
Philadelphia  into  the  world’s 
wireless  'Net  hot  spot,  possibly 
by  outfitting  lampposts 
with  wireless  gear.  > 


w  uses  business  e-mail 

to  zip  sexual  content  to  co-workers  and  others,  according  to  a  new  survey 
from  Web  and  e-mail  filtering  company  SurfControl.  One-third  also  use  ’Net 
access  at  work  to  grab  pornography,  the  survey  says. 


®  Legal  loot.  The  SCO  Group,  in  reporting  its  third-quarter  financial 
results  last  week,  said  that  a  loss  of  $7.4  million  for  the  period  was  largely 
attributable  to  legal  costs  involved  with  protecting  its  source  code  in  cases 
vs.  companies  such  as  IBM  and  Novell.  SCO  says  it  has  come  to  terms  with 
its  law  firm  to  cap  legal  expenses  at  $31  million,  a  number  that  works  for 
the  software  maker,  based  on  its  $43  million  in  cash  reserves. 


the  daily  grind,  while  1 1%  said  it  has  added  stress  to  their  lives.The  survey  was  conducted 
in  February  and  involved  2,204  adults. 

Shades  of  Knight  Rider:  Honda,  IBM  team  on  talking  car 

■  Honda  and  IBM  last  week  announced  that  the  2004  Honda  Acura  RL  will  have  an 
option  for  a  built-in  voice-recognition  system  developed  by  IBM  that  will  let  passengers 
ask  for  directions,  displaying  them  in  graphic  style  on  a  small  monitor.lt  can  provide  a 
driver  with  turn-by-turn  spoken  instructions,  eliminating  the  need  for  drivers  to  take  their 
hands  off  the  wheel.  A1  Murray  IBM’s  worldwide  sales  executive  for  embedded  voice  and 
telematics,  said  the  Honda  direction-finding  system  is  the  first  of  its  kind  that  doesn’t 
require  manual  text-based  input  to  display  directions.The  IBM-developed  speech-based 
locator  works  by  using  the  car’s  GPS  equipment  to  calculate  the  route  for  desired  desti- 
nations.The  system  also  features  nationwide  dining  information,  which  gives  drivers 
reviews  and  other  information  concerning  restaurants  on  their  route. 

Oracle  patches  problems 

■  Oracle  last  week  released  security  patches  that  plug  several  vulnerabilities  reported 
last  month  in  its  database  software  and  other  products.  Customers  should  download 
the  patches  to  fix  holes  in  current  and  past  versions  of  Oracle’s  database,  application 
server  and  management  tools,  the  company  said  in  a  security  bulletin.  It  described  the 
holes  in  its  database  and  application  server  as  “high  risk,”  because  a  hacker  potentially 
could  exploit  them  to  access  a  server  without  needing  a  user  account,  Oracle  said.  Last 
week’s  bulletin  lists  all  the  affected  products,  which  are  listed  at  www.nwfusion.com, 
DocFinder:  3549. 
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Introducing  DuPont™  certified  limited  combustible  cable.  In  the  event  of  a  fire,  securing  your 
business’  uptime  is  crucial.  The  data  communications  cable  you  choose  could  play  a  key  role  in 
protecting  your  network  technology  investment.  DuPont™certified  cable  produces  20  times  less  smoke 
than  other  plenum  rated  cables.  And  less  smoke  means  less  costly  downtime,  making  it  the  most 
advanced  fire  safety  cable  technology  available  today.  To  learn  more  about  DuPont'M  certified  limited 
combustible  cable  or  to  request  a  free  CD,  log  on  to  teflon.com/cablingmaterials  or  call  1-800-207-0756. 
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Windows  upgrades,  licenses  getting  in  sync 


■  BY  JOHN  FONTANA 

A  byproduct  of  Microsoft’s 
overhaul  of  Longhorn  is  that  the 
company’s  operating  system 
development  road  map 
now  aligns  more  closely  gn  AtjAIVQIH 
with  its  software  mainte-  llll,1L,w|« 
nance  model,  which  pre¬ 
sents  users  with  licensing 
options  that  could  help  end 
monolithic  upgrades. 

The  Longhorn  revamp  means 
the  client  operating  system’s  mar¬ 
quee  features  eventually  will  be 
available  as  individual  compo¬ 
nents  and  as  part  of  Longhorn’s 
single  integrated  operating  sys¬ 
tem.  The  components  could 
boost  Microsoft’s  controversial 
Software  Assurance,  a  mainte¬ 
nance  program  for  volume  licens¬ 
ing  contracts.  They  also  could 
help  the  program  shed  its  bad 
reputation  by  supplying  what  it 
needs  most,  a  ready  stable  of  soft¬ 
ware  updates. 

That  could  make  Software  As¬ 
surance  more  attractive  to  users, 
especially  after  some  felt  cheat¬ 
ed  out  of  upgrades  during  their 
first  round  of  contracts. 

In  addition,  many  users  could 
get  what  they  want  —  smaller 
upgrades  that  are  easier  to 
deploy  and  cause  less  disruption 
on  their  networks. 

“Modularity  is  important,  not 
only  for  rolling  out  new  versions 
of  software  but  also  maintaining 


old  ones,” says  Fred  Wettling,  infra¬ 
structure  architect  for  Bechtel,  a 
San  Francisco  global  engineer¬ 
ing,  construction  and  project 
management  firm.  “We  can’t 
afford  to  do  forklift 
upgrades  anymore.  It 
1  is  costing  us  millions." 

The  kicker  will  be 
how  Microsoft  chooses  to 
license  Longhorn  components. 

One  thing  is  certain:  Users  of 
the  Indigo,  Avalon  and  WinFS 
subsystems  of  Longhorn  (see 
graphic)  will  need  a  Longhorn 
license  regardless  of  where 
those  components  run,  accord¬ 
ing  to  Sunny  Charlebois,  product 
manager  in  the  worldwide 
licensing  and  pricing  group  at 
Microsoft. 

That  requirement  could  drive 
users  to  re-evaluate  Software 
Assurance,  with  which  the  prom¬ 
ise  of  a  steady  flow  of  updates 
would  replace  the  anxiety  of 
hoping  for  a  monolithic  upgrade 
before  contracts  expire. 

Charlebois  says  Software  As¬ 
surance  is  winning  converts,  in¬ 
cluding  20%  to  30%  of  customers 
with  expiring  maintenance  agree¬ 
ments  called  Upgrade  Advantage 
that  committed  to  Software  As¬ 
surance  in  the  last  few  months. 

If  the  Longhorn  rollout  goes  as 
planned,  Windows  XP  users 
would  have  the  ability  to  absorb 
Indigo  and  Avalon  on  that  plat¬ 
form,  then  contemplate  an  evolu- 


Pieces  of  Longhorn 


Microsoft  plans  to  deliver  the  Longhorn  client  operating  system  in  pieces  instead  of  a  single 
monolithic  upgrade.  The  move  should  help  rescue  corporations  from  a  forklift  upgrade, 
and  align  with  Microsoft’s  software  maintenance  model. 


Components 

Description 

Planned  delivery 

Indigo 

Set  of  middleware  APIs  for 
distributed  systems,  service- 
oriented  architecture. 

2006  with  support  forWindows  XP,  Server 
2003  or  Longhorn. 

Avalon 

Presentation  subsystem  for 
building  applications. 

2006  with  support  for  XP,  Server  2003  or 
Longhorn. 

Longhorn  client 
operating  system 

Indigo,  Avalon  plus  performance, 
reliability  and  security 
enhancements. 

Second  half  of  2006  as  an  XP  upgrade. 

WinFS 

Storage  subsystem  provides 
search,  data  organization  and 
data  management  capabilities. 

Beta  in  2006;  expected  shipment  in  2007  for 
Longhorn. 

tionary  upgrade  to  Longhorn 
sometime  in  2006.  IDC  says  XP 
users  represent  51%  of  Windows 
desktops.Then  in  2007  or  beyond, 
they  could  decide  on  rolling  out 
the  WinFS  storage  subsystem  for 
the  client  and  Longhorn  Server, 
completing  a  timeline  that  is  an 
incremental  upgrade  rather  than 
one  giant  leap. 

And  it  would  finally  align  soft¬ 
ware  development  with  three- 
year  Software  Assurance  con¬ 
tracts,  which  could  provide  regu¬ 
lar  software  upgrades,  the  origi¬ 
nal  hallmark  of  the  model. 


‘Fired-up’  Ballmer  zings  Linux 


■  BY  PAUL  ROBERTS 

WORCESTER,  MASS.  —  Microsoft  CEO  Steve 
Ballmer  last  week  used  an  address  before  software 
industry  leaders  outside  Boston  to  tout  his  compa¬ 
ny’s  vision,  while  casting  doubt  on  alternatives  to 
Windows. 

Speaking  to  members  of  the  Massachusetts  Soft¬ 
ware  Council,  Ballmer  said  he  was  excited  about  the 
promise  of  technological  advances  in  the  next 
decade. 

“I'm  as  fired  up  now  as  I’ve  ever  been  in  24  years  at 
Microsoft,”  Ballmer  told  attendees  at  the  event.“In  the 
next  10  years,  you’re  going  to  see  more  positive 
change  than  in  the  last  10.” 

Ballmer  promoted  his  company’s  products  as  a 
key  to  that  transformation,  including  the  next  ver¬ 
sion  of  Windows,  dubbed  Longhorn. 

The  company  also  is  working  to  make  its  offerings 
more  interoperable  with  products  using  other  soft¬ 
ware  platforms  such  as  Linux,  Unix  and  XML,  he  said. 

He  singled  out  XML  and  Web  Services  as  the  “big 
breakthrough”  of  the  next  decade  that  will  spur 
innovation. 


Shedding  his  visionary  mantle,  he  scoffed  at  argu¬ 
ments  that  his  company’s  operating  system  creates  a 
computing  “monoculture,”  and  took  a  swipe  at  those 
who  would  see  Linux  replace  Windows  on  servers 
and  desktops  within  companies. 

Microsoft’s  platforms  offer  better  interoperability 
with  the  company’s  other  technology,  such  as  .Net, 
reducing  the  total  cost  of  ownership  of  Windows 
compared  with  Linux,  he  said.  Linux  is  available  for 
free  but  often  requires  significant  effort  to  integrate 
and  maintain,  he  noted. 

On  the  touchy  issue  of  security  Ballmer  dismissed 
the  notion  that  Linux  is  more  secure  than  Windows, 
saying  he  open  source  operating  system  would  be 
attacked  as  frequently  as  Windows  if  it  had  as  large 
a  share  of  the  operating  system  market  as  Windows. 

While  not  perfect  on  security  Microsoft  has  a 
defined  process  for  addressing  security  vulnerabili¬ 
ties, he  said.  He  said  the  open  source  community  is 
“all  over  the  map”  when  it  comes  to  addressing  vul¬ 
nerabilities  in  Linux. 

Roberts  is  a  correspondent  with  the  IDG  News 
Service. 


“The  flaw  in  Software 
Assurance  has  been  Microsoft’s 
delays  in  getting  new  software 
out,”  says  Dwight  Davis,  an  ana¬ 
lyst  with  Summit  Strategies. 

Microsoft  tried  to  address  that 
on  the  server  operating  side  earl¬ 
ier  this  year,  announcing  that 
major  upgrades  would  come 
every  four  years  with  an  update 
release  two  years  after  each 
major  upgrade.  It  made  the 
change  so  companies  could  do 
“longer-term  planning  and  bud¬ 
geting.” 

But  the  plan  seemed  linked  to 
generating  interest  in  Software 
Assurance,  especially  after 
Microsoft  said  next  summer’s 
“update”  release  for  Windows 
Server  2003,  known  as  R2,  would 
be  made  available  for  no  charge 
through  Software  Assurance  but 
would  require  purchase  of  a  new 
server  license  for  everyone  else. 

“I  can’t  say  if  the  R2  model  is 
relevant  [to  Longhorn],” 
Charlebois  says.“What  customers 
asked  us  for  was  when  to  expect 
updates  so  we  felt  it  important  to 
set  expectations  for  Longhorn.” 

Today  licensed  users  without 
Software  Assurance  get  feature 
packs  and  other  add-ons, such  as 
digital  rights  management  tech¬ 
nology,  but  Microsoft  plans  to 
substantially  reduce  those  and 
instead  integrate  them  into 
update  and  major  releases. 

Despite  the  ongoing  backlash 
against  Software  Assurance,  ex¬ 
perts  say  the  table  is  being  set. 

“As  the  model  evolves  to  align 
the  product  road  map  with  vol¬ 
ume  licensing,  it  begins  to  favor 
those  that  have  it  over  those  that 


do  not,”  says  Joe  Wilcox,  an  ana¬ 
lyst  with  Jupiter  Research.“Micro- 
soft’s  problem  now  is  that  the 
[operating  system]  is  not  a 
growth  market.  It’s  a  mainte¬ 
nance  market  that  has  to  look  at 
customer  satisfaction.” 

What  would  be  satisfying,  users 
say  is  Microsoft  figuring  out  the 
licensing. 

“Instead  of  Microsoft  making 
technology  changes,  they  should 
focus  more  on  the  business  side 
and  the  impact  on  cash  flow]’ 
says  Steve  Linstead,  program 
manager  for  Johnson  Controls,  a 
Milwaukee, Wis., supplier  of  auto¬ 
motive  parts  and  building  con¬ 
trols.  “If  they  charge  proportion¬ 
ately  leading  up  to  full  price 
[payment], you  get  cash  flow  on 
the  business  side  and  a  better 
implementation  path  on  the 
technology  side.” 

But,  Linstead  says,  “If  you  pay 
now  for  what  Longhorn  is  sup¬ 
posed  to  be  and  you  only  get 
part  of  it,  that  will  be  a  problem.” 

Experts  say  Microsoft  must 
eliminate  that  kind  of  confusion. 

“Right  now  things  with  Long¬ 
horn  are  vague  because  there  is 
not  a  current  precedent  with  the 
way  Microsoft  products  are  sold,” 
says  Paul  DeGroot,  an  analyst 
with  independent  research  firm 
Directions  on  Microsoft. “I  could 
have  four  to  five  years  without 
licensing  costs  and  have  Indigo, 
Avalon  and  XP  That  is  the  as¬ 
sumption  now.  Microsoft  owes  its 
volume-licensing  customers  an 
explanation  on  how  things  will 
work.  What  is  the  value  in  Soft¬ 
ware  Assurance  vs.  not  having  it 
at  all.”H 
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The  BlackBerry  Enterprise  Solution  Difference 

•  Provides  advanced  security  including  triple  DES 
encryption,  handheld  password  protection, 
wireless  IT  security  commands  and  policies 

•  Includes  server  software,  wireless  handhelds, 
wireless  service  and  support  programs. 

•  Provides  flexible  application  deployment  - 
build  in-house  or  with  help  from  an  independent 
software  vendor 

•  Delivers  centralized  manageability  and 
simplified  implementation 
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uto  industry  pushes  for  XMLunity 


■  BY  ELLEN  MESSMER 

DETROIT  —  Seeking  to  recon¬ 
cile  two  rival  XML  standardization 
efforts  while  avoiding  the  costly 
and  complicated  process  of  sup¬ 
porting  incompatible  systems, 
General  Motors,  Ford  Motor  Com¬ 
pany  and  DaimlerChrysler  last 
week  together  endorsed  a  plan 
calling  for  the  auto  industry  to  use 
a  single  XML-based  data  ex¬ 
change  of  business  documents. 

The  format-neutral  XML  is  wide¬ 
ly  seen  as  a  more  flexible  method 
to  define  sharing  business  con¬ 
tent  than  electronic  data  inter¬ 
change  (EDI),  the  method  the 
auto  industry  has  used  since  the 
1980s.  The  Big  Three  automakers 
and  several  of  their  suppliers  last 
week  said  it  makes  sense  to  re¬ 
tool  for  XML.  However,  the  World 
Wide  Web  Consortium  (W3C), 
which  offers  Web  services,  and 
the  Organization  for  Advance¬ 
ment  of  Structured  Information 
Standards  (OASIS)m,  with  its 
ebusiness  XML  (ebXML)  plan, 
present  two  similar  but  compet¬ 
ing  approaches. 

“Both  [W3C  and  OASIS]  lever¬ 
age  XML  but  are  largely  incom¬ 
patible,”  said  John  Jackson,  GM’s 
director  of  enterprise  software, 
during  his  presentation  at  the 


Driving  the  automotive  e-biz 


The  Automotive  Industry  Action  Group,  formed  in  1988  to  address  IT  issues 
between  automakers  and  their  suppliers  has  been  active  in  setting  data  exchange 
and  e-business  communications  standards.  Here  are  some  highlights: 


1988 

First  project  teams  for 
industry’s  use  of  electronic 
data  interchange. 

1995 

AIAG  begins  work  on 
Automotive  Network 
exchange  for  Internet-enabled 
communications  through 
secure  access  point. 


2000 

AIAG  announces  support 
for  ebXML  inititiave. 


1998 

ANX  service  has  its 
first  subscribers; 
sold  in  1999toSAIC. 
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1988 


1995 
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1998  1999 


2001 

AIAG  develops 
“Tire  &  Wheel 
Identification  Label 
RFID  standard. 


2002 

AIAG  recommends  use 
of  Open  Applications 
Group  Specification 
business  documents 
and  ebXML  message 
routing. 


~i — r 


2000 


~i — r 


2001 


2003 


2004 


annual  Auto-Tech  conference 
organized  by  the  Automotive 
Industry  Action  Group  (AIAG). 
The  AIAG  is  the  trade  organiza¬ 
tion  that  for  two  decades  has 
brought  together  the  Big  Three 
and  their  suppliers  to  hammer 
out  IT  issues. 

The  answer  for  now,  the  Big 
Three  say  is  they  are  going  to  use 
their  collective  clout  to  push  W3C 
and  OASIS  for  convergence  on 
XML  standards.  Because  if  that 
fails,  the  industry  faces  an 
increased  risk  of  interoperability 
problems  and  a  lower  adoption 


2004 

AIAG  defines  first  XML-based  inventory-management 
business  documents  but  clarifies  it  wants  to  see 
convergence  between  two  competing  XML-based 
e-commerce  standards,  ebXML  and  Web  services. 


rate  for  XML,  they  say 

“If  I’m  doing  ebXML  and  my 
partner  is  doing  Web  Services,  it’s 
not  going  to  work,”  said  Tim 
Baeten,  who  leads  the  technical 
group  at  Ford  designing  the  auto¬ 
maker’s  next-generation  inter¬ 
operability  platform.  Baeten  is 
also  co-chair  of  the  AIAG’s  B2B 
Convergence  Work  Group. 

“Convergence”  suggests  that  the 


Multicore  processor  on  Intel  road  map 


■  BY  TOM  KRAZIT 

Intel  will  preview  a  multicore  future  this  week  dur¬ 
ing  the  Fall  Intel  Developer  Forum  in  San  Francisco 
as  it  tries  to  leave  behind  a  tumultuous  year  plagued 
by  product  delays  and  road-map  revisions. 

The  company  is  expected  to  provide  more  infor¬ 
mation  about  its  plans  to  introduce  multicore  pro¬ 
cessors  across  its  product  lines  by  the  end  of  2005. 
The  multicore  concept  involves  placing  two  sepa¬ 
rate  processing  engines  on  the  same  silicon  chip. 

Several  other  chipmakers  have  introduced  dual¬ 
core  chips  or  revealed  plans  to  build  these  chips  as 
thermal  problems  have  forced  the  chip  industry  to 
investigate  new  methods  of  improving  performance 
that  don’t  involve  faster  clock  speeds.  Last  week, 
Advanced  Micro  Devices  demonstrated  a  dual-core 
Opteron  server  processor  that  is  scheduled  to  arrive 
in  mid-2005. 

Intel  canceled  two  future  processor  cores  in  May 
without  providing  any  details 
about  what  would  replace  Tejas 
and  Jayhawk,  the  code  names  for 
the  planned  successors  to  the 
Pentium  4  and  Xeon  DP  pro- 
cessors.The  company  didn’t  com¬ 
ment  on  what  prompted  the  can¬ 
cellations,  saying  only  that  it  had 


realized  it  could  bring  multicore  processors  to  mar¬ 
ket  faster  than  anticipated. 

Analysts  say  they  believe  Intel’s  NetBurst  architec¬ 
ture  for  the  Pentium  4  and  Xeon  relied  too  heavily 
on  raw  clock  speed  to  improve  performance  amid 
the  heat  dissipation  problems  that  have  accompa¬ 
nied  the  arrival  of  the  90-nm  process  generation. 

Intel’s  Frank  Spindler.vice  president  of  the  compa¬ 
ny’s  Corporate  Technology  Group,  declined  to  com¬ 
ment  on  the  specifics  of  Intel’s  multicore  plans  dur¬ 
ing  a  show-preview  conference  call,  but  promised 
that  more  information  would  be  revealed  this  week. 

“They  have  to  talk  about  dual-core.That’s  the  ques¬ 
tion  du  jour  at  this  conference,”  says  Kevin  Krewell, 
editor  in  chief  of  the  Microprocessor  Report.  The 
conference  attendees  that  build  products  based  on 
Intel’s  technology  will  want  to  hear  more  about  the 
dual-core  chips  to  start  working  on  their  own  prod¬ 
ucts  for  next  year,  he  says. 

On  the  enterprise  server  side,  Intel  has  disclosed  its 
plans  for  a  dual-core  Itanium  2 
processor  code-named  Montecito 
and  a  dual-core  Xeon  MP  chip 
called  Tulsa,  both  of  which  are 
scheduled  to  arrive  next  year. 


Servers 
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Krazit  is  a  correspondent  with 
the  IDG  News  Service. 


W3C  and  OASIS  would  agree  on  a 
common  messaging  approach, 
which  is  one  way  Web  services 
and  ebXML  differ.  There’s  some 
optimism  that  demands  from  the 
Big  Three  might  help  that  happen 
—  but  perhaps  not  fast  enough 
for  the  auto  industry 

“1  expect  convergence,  but  I 
don’t  think  it  will  occur  in  a  rea¬ 
sonable  time  frame,”  Jackson  said. 

Ford  already  uses  Web  services 
to  share  data  with  suppliers 
through  its  e-Hub  portal,  while 
GM  and  Volkswagen  have  placed 
their  bets  on  Web  ebXML.  Sup¬ 
pliers  to  the  Big  Three  say  they’re 
concerned  that  if  the  XML  stan¬ 
dards  issue  isn’t  sorted  out  early 
they  will  face  demands  from  the 
automakers  to  use  incompatible 
products.  This  issue  is  a  cost  and 
operational  burden  for  parts 
manufacturers,  despite  the  shift 
from  proprietary  networks  to  the 
Internet  and  use  of  some  shared 
e-commerce  facilities  such  as  the 
Covisint  Web  portal. 

“We’re  concerned  that  we  don’t 
end  up  with  requirements  from 
customers  to  do  multiple  things 
[with  XML] (said  Gene  Hopkins, 
director  of  business-to-business 
communications  at  ArvinMeritor, 
a  truck  and  trailer  parts  manufac¬ 
turer  in  Troy  Mich. 

The  Big  Three  carmakers  and 
suppliers  last  week  made  it  clear 
they  aren’t  going  to  sit  around 
waiting  for  that  hoped-for  conver¬ 
gence  to  happen. 

Under  the  auspices  of  the  AIAG, 
the  carmakers  this  month  fin¬ 
ished  their  own  XML-defined 
business  documents  for  auto 


industry  inventory  management. 
They  expect  to  define  more  busi¬ 
ness  documents  by  year-end  and 
submit  them  to  OASIS  and  W3C 
for  review. 

They  also  want  software  ven¬ 
dors  to  implement  their  XML- 
defined  business  documents  in 
products.“One  thing  we  learned  a 
year  ago  is  that  standards  groups 
and  vendors  want  specific  re¬ 
quirements  from  us,”  Baeten  said. 

With  the  prospect  of  the  auto 
industry  designing  a  new  model 
of  data  sharing,  Microsoft  this  year 
joined  the  AIAG,  sponsoring  the 
Auto-Tech  conference  breakfast 
and  adding  its  name  to  the  con¬ 
ference  badge-holder. 

“We  want  to  help  drive  this  sort 
of  initiative,”  said  John  Stenlake, 
architect  at  Microsoft  consulting 
services,  who  spoke  during  a 
panel  discussion  at  the  confer¬ 
ence.  Stenlake  joined  the  com¬ 
pany  earlier  this  year  from  Ford, 
where  he  was  chief  software 
architect.  He  noted  that  auto¬ 
makers  now  see  Microsoft  as  the 
“800-pound  gorilla”  at  the  AIAG 
on  the  XML  question. 

Stenlake  said  Microsoft  is  advo¬ 
cating  Web  services  for  the  auto 
industry  —  as  is  IBM,  according 
to  Rob  Cutlip, solutions/software 
architect  in  the  IBM  Software 
Group,  Solutions  and  Strategy 
Division.  Both  computer  archi¬ 
tects  spoke  during  the  panel 
discussion. 

“We’re  not  trying  to  create  an  ab¬ 
stract  layer  by  committee, ’’Cutlip 
said.  That  doesn’t  succeed.” 
Though  both  hope  to  see  conver¬ 
gence,  Cutlip  said, the  reality  is 
that  a  lot  more  investment  is  going 
into  Web  Services  than  ebXML. 

Although  the  AIAG  a  few  years 
ago  expressed  official  support  for 
ebXML  as  it  was  ramping  up,  the 
wind  seems  to  be  shifting  toward 
Web  services  if  only  because 
AIAG  members  such  as  IBM  and 
Microsoft  say  that’s  where  they 
are  putting  their  bets. 

The  bottom  line,  according  to 
the  carmakers  striving  to  work 
for  industry  interoperability,  is 
that  manufacturers  need  to  be 
able  to  buy  e-business  software 
that  works  for  the  purposes  of 
sharing  XML  data  based  on  an 
agreed-upon  business  model. 
They  want  it  to  be  based  on  stan¬ 
dards,  but  in  the  end  what 
counts  is  what  works. 

“You  don’t  buy  from  the  stan¬ 
dards  bodies,”  GM’s  Jackson 
noted. “You  buy  from  the  likes  of 
Microsoft  and  IBM.”H 


YOU  MAY  NOT  HAVE  TIME  TO  STUD 
THE  TCO  OF  WINDOWS  AND  LINUX, 
BUT  THE  YANKEE  GROUP  DOES. 
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" For  midsized  and  large  organizations,  a  significant 
Linux  deployment  will  neither  be  free  nor  easily 
accomplished.  In  fact,  respondents  at  large 
organizations  reported  that  a  wholesale  switch  to 
Linux  from  Windows  or  Unix  would  significantly 
increase  TCO  for  the  forseeable  future." 


-Laura  DiDio,  The  Yankee  Group,  April 2004 
Linux,  Unix,  and  Windows  TCO  Comparison 


The  Yankee  Group,  a  global  research  and  consulting  firm,  concluded 
that  a  significant  switch  to  Linux  from  Windows  or  Unix  could  cost  three 
to  four  times  as  much  without  delivering  tangibly  better  performance  or 
business  value.  These  findings  are  based  on  a  non-sponsored  worldwide 
survey  of  1,000  IT  administrators  and  C-level  executives  in  midsized 
and  large  enterprises. 

To  get  the  full  study,  visit  microsoft.com/getthefacts 


2004  Microsoft  Corporation.  All  rights  reserved.  Microsoft,  Windows,  the  Windows  logo,  and  Windows  Server  System  are  either  registered  trademarks  or  trademarks  of  Microsoft 
Corporation  in  the  United  States  and/or  other  countries.  The  names  of  actual  companies  and  products  mentioned  herein  may  be  the  trademarks  of  their  respective  owners. 
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Horn  adds  oomph  to  wireless  bridges 


Company  also  expands  Crossbeam  relationship  to  resell  larger  X  series  appliances. 


■  BY  JOHN  COX 

3Com  this  week  plans  to  unveil 
a  wireless  LAN  bridge  that  quad¬ 
ruples  the  throughput  of  the  com¬ 
pany’s  current  line. 

The  802.1  lg  bridge  can  span 
up  to  8  miles  between  buildings, 
with  throughput  of  up  to  20M  or 
25M  bit/sec,  depending  on  dis¬ 
tance.  Wireless  bridges  based  on 
WLAN  radios  let  users  quickly 
set  up  broadband  network  con¬ 
nections  in  place  of  T-l  lines 
with  ongoing  monthly  fees  or 
costly  fiber  runs. 

One  3Com  customer  that 
intends  to  buy  the  new  product  is 
Vineland  Public  Schools  in  New 
Jersey  The  school  district  has  sev¬ 
eral  3Com  11M  bit/sec  802.11b 
bridges,  which  supplement  its  pri¬ 
vate  fiber  network. 

The  bridges  bring  the  network 
at  the  central  site  to  several  re¬ 
mote  buildings  or  temporary 
classrooms,  where  wireline  con¬ 
nections  are  not  practical,  says 
Stephen  Dantinne,  the  schools’ 
technology  supervisor. 

The  802.11b  bridges  have 
worked  fine,  he  says,  but  more 


users  and  more  demanding  appli¬ 
cations  are  taxing  the  5M  to  7M 
bit/sec  of  throughput.The  802.1  lg 
bridge  will  handle  traffic  loads  for 
the  foreseeable  future,  he  says. 

Vineland  uses  the  bridges  in 
one  case  to  extend  the  network 
from  a  school  with  a  fiber  link  to 
a  rented  building  across  a  busy 
street  and  a  field.  “It’s  not  worth 
$20,000  or  $30,000  to  string  fiber 
to  other  sites,  where  we  don’t  own 
the  buildings  or  have  only  a  few 
users,”  he  says. 

It  also  gives  Vineland  a  way  to 
quickly  create  a  relatively  inex¬ 
pensive  back-up  network  in  case 
a  length  of  fiber  is  cut. 

The  802.1  lg  bridge  is  available 
in  two  models,  both  of  which 
ship  later  this  month.  One,  about 
the  size  and  shape  of  a  pizza 
box,  can  be  mounted  outdoors. 
Under  the  cover,  it  has  a  high- 
gain  18-dBi  antenna,  with  the 
802.1  lg  radio,  power  supply  and 
other  electronics  attached 
behind  it.  The  higher  the  gain 
number,  in  effect,  the  more  sensi¬ 
tive  the  antenna,  and  the  longer 
its  range.  The  box  costs  about 
$1,600. 


Bridge  boost 

3Com’s  new  802.11g  bridges  feature: 

•  54M  bit/sec  line  speed,  up  to 
20M  or  25M  bit/sec 
throughput. 

•  Support  for  spans  up 
to  8  miles. 

•  Indoor  (shown  here)  and 
outdoor  models. 


The  second  model  (see 
graphic,  above)  is  intended  to  be 
set  up  indoors,  such  as  across  a 
warehouse.You  can  choose  from 
a  selection  of  panel  and  omni¬ 
directional  antennas,  with  differ¬ 
ent  gains.  The  base  unit  costs 
$990. 

3Com  redesigned  its  bridges  to 
add  processing  power  to  support 
Wi-Fi  Protected  Access,  along 
with  the  Advanced  Encryption 
System,  says  Mark  Bisaillon,  a 
product  manager  with  3Com’s 
WLAN  division.  Also  new  is  sup¬ 
port  for  a  bridging  specification 
called  Wireless  Distribution 
System  (WDS),  which  is  a  part  of 


Verizon  Wireless  conies  to  aid 
of  global  road  warriors 


■  BY  DENISE  PAPPALARDO 

Verizon  Wireless  now  is  offering  customers 
the  ability  to  roam  internationally  while  using 
one  phone  and  one  number. 

The  service  provider  announced  last  week 
that  it  is  exclusively  offering  the  Samsung 
SCH-a790  Global  Phone,  a  handset  that  sup¬ 
ports  two  frequency  bands  for  both  GSM 
and  Code  Division  Multiple  Access 
(CDMA). 

Verizon  Wireless  customers  will  have 
the  ability  to  roam  over  Vodafone’s 
international  networks  that  span 
Europe,  Asia,  Africa  and  the 
Middle  East.  Verizon  Wireless 
is  a  joint  venture  between 
Verizon  Communications 
and  Vodafone. 

Verizon  Wireless  already 
offers  an  International  Travelers 
Program  in  which  customers  can  rent  or 
purchase  phones  that  are  compatible 
Vodafone’s  networks  overseas.  Although  customers 
cannot  use  their  domestic  CDMA  phones  overseas 
with  this  program,  Verizon  supports  call-forwarding 
to  the  international  phones  so  users  don’t  miss  calls. 


with 


But  users  cannot  forward  their 
address  book  or  contact  lists  to 
the  rented  phones. 

The  Samsung  SCH-a790  device 
eliminates  the  need  to  rent  a 
phone  or  even  own  two  phones 
for  international  travel. 

Placing  calls  from  outside 
the  U.S.  typically  costs  $1.29 
per  minute,  unless  calling 
from  Maldives,  Indonesia,  Sri 
Lanka  or  Latvia,  where  calls  cost 
$2.49  per  minute. 

Charges  for  placing  calls  within 
the  U.S.  are  part  of  a 
customer’s  monthly 
America’s  Choice 
calling  plan.  Prices 
depend  on  the 
user’s  plan. 

The  cost  of  calling 
from  the  U.S.  to 
other  countries  ranges  from  60  cents  per  minute  up 
to  $2.49  per  minute.  For  a  full  list  of  per-minute  rates 
go  to  www.nwfusion.com,  DocFinder:  3547. 

The  phone  costs  $350  with  a  two-year  wireless 
service  contract.  ■ 


Verizon  Wireless  is 
targeting  international 
travelers  with  the  Sam¬ 
sung  SCH-a790  Global 
Phone,  which  works  across 
GSM  and  CDMA  networks. 


the  802.11  standard.  WDS  lets 
radio  devices  connect  to  each 
other  and  act  as  bridges  or 
repeaters. 

Security  deal 

In  other  3Com  news,  the  com¬ 
pany  this  week  is  announcing 
that  it  is  reselling  Crossbeam’s 
multi-service  security  appliance 
known  as  the  X  Series.  3Com  will 
sell  two  models  under  the  names 


Security  Switch  7245  and  7280, 
the  former  having  seven  slots  and 
the  latter  14.The  slots  can  be  pop¬ 
ulated  with  server  blades  that 
support  various  security  func¬ 
tions  including  virus  protection, 
firewall  and  VPN. 

These  two  devices  are  designed 
to  protect  data  centers,  act  as 
security  gateways  for  large  orga¬ 
nizations,  contain  the  spread  of 
viruses  and  worms  within  LANs 
and  support  hosted  security  ser¬ 
vices  for  ISPs. 

These  two  additions  to  the 
3Com  line  are  part  of  an  earlier 
agreement  with  Crossbeam  to 
resell  the  gear.  3Com  already 
resells  a  lower-capacity  C  Series 
Crossbeam  box  under  the  name 
Security  Switch  6200. 

Network  World  Senior  Editor 
Tim  Greene  contributed  to  this 
story. 


Content  switch 
coming  from  Sun 


■  BY  ROBERT  MCMILLAN 

Sun  later  this  month  plans  to  unveil  its  first-ever  content  switch:  a 
load-balancing  and  Secure  Sockets  Layer  acceleration  switch  based 
on  the  Nauticus  N2000  products  that  the  company  acquired  in 
January 

Sun  plans  to  ship  its  new,  unnamed  switch  by  year-end  and  will 
deliver  early  versions  of  the  product  to  select  customers  in  time  for  a 
press  and  industry  partner  event,  to  be  held  Sept.  21  in  New  York,  says 
John  Fowler,  executive  vice  president  of  Sun’s  Network  Systems 
Group. 

Rather  than  simply  shuttling  network  traffic  from  point  to  point,  con¬ 
tent  switches  are  aware  of  the  content  of  the  network  traffic  they 
switch  and  are  designed  to  perform  certain  network  processing  tasks 
—  such  as  server  load  balancing  or  SSL  encryption  —  that  would 
otherwise  bog  down  servers  on  the  network. 

The  switch  also  has  a  “virtualization”  capability  that  lets  customers 
run  a  number  of  disparate  networks  on  one  switch,  Fowler  says.“It  has 
the  ability  to  partition  and  have  a  whole  bunch  of  different  routing 
domains  or  policy  domains.”  The  Sun-branded  switch  will  be  inte¬ 
grated  with  Sun’s  N1  management  software. 

Until  now,  the  only  network  products  that  Sun  has  sold  have  been 
network  cards  for  its  systems,  a  virtualization  switch  for  the  compa¬ 
ny’s  StorEdge  6920  storage  system  and  network  switching  products 
that  go  into  Sun’s  blade  servers,  Fowler  says. 

Sun’s  decision  to  move  into  the  content  switch  market  came  as  a 
surprise  to  some  analysts,  who  say  that  the  move  runs  the  risk  of 
antagonizing  Cisco, a  long-time  Sun  partner, which  paid  $5.7  billion  in 
stock  four  years  ago  to  acquire  content  switch  vendor  ArrowPoint 
Communications. 

McMillan  is  a  correspondent  with  the  IDG  News  Service. 
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In  repeated  time  trials  between  the  SDLT  600  and  LTO-2,  neither  tape  ever  reached  the  cheese, 
or  even  left  the  starting  line  for  that  matter.  Perhaps  the  tapes  don’t  like  cheese.  Or  maybe,  (and  this 
is  highly  speculative,  mind  you)  it’s  because  they  don’t  have  any  legs?  We  may  never  know  the  truth. 
However,  when  it  comes  to  data  backup  capacity,  the  SDLT  600  was  the  clear  winner  thanks  to  a 

whopping  50%  more  capacity  than  LTO-2.  The  SDLT  600  is  also  20%  faster  and  includes  DLTSage™ 

diagnostic  management  software  and  DLT/cerM  archival  WORM  functionality.  How  do  we  know? 

It’s  been  tested.  For  more  info  and  to  download  the  whitepaper,  visit  DLTtape.com 
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Compliance  toolbox 

!T  vendors  are  taking  a  variety  of  approaches  to  help 
customers  meet  regulatory  compliance  standards. 

Change  and  configuration  management: 

Involves  the  collection  of  configuration  data  from  network  devices  and 
systems,  tracking  access  and  changes  made,  scanning  for  compliance 
with  pre-defined  policies,  alerting  IT  managers  to  breaches  and 
generating  reports  for  audits.  Sample  products:  Ecora’s  Enterprise 
Auditor,  Intelliden’s  Compliance  Manager. 


Desktop  management: 

Based  on  the  pulling  or  pushing  of  data  between  a  centralized 
management  console  and  client  machines;  scanning  of  desktops  for 
software  license,  usage  and  virus  data;  and  providing  remote  control 
abilities  to  restrict  access  to  workstations.  Sample  products: 
ScriptLogic's  Desktop  Authority,  Altiris'  Asset  Management  Suite. 


Identity  management: 

Monitoring  access  and  usage  on  systems  and  devices,  provisioning 
user  accounts  and  privileges,  securing  access  with  single  sign-on  and 
password  management,  and  providing  workflow  tools  for  regulatory 
compliance.  Sample  products:Thor’s  Audit  and  Compliance  Manager 
8.0,  Courion's  Compliance  Courier. 


Security  management: 

Scanning  desktops,  server  and  application  systems  for  vulnerabilities, 
identifying  violations  with  pre-defined  policies,  collecting  data  about 
compliance  security  efforts  and  producing  reports  relevant  to  compliance. 
Sample  products:  Computer  Associates'  eTrustVulnerability  Manager, 
IBM’s  Tivoli  Security  Compliance  Manager. 


Compliance 

continued  from  page  1 

deliberate  disclosure  of  health¬ 
care  information  would  rather 
invest  in  software  than  take  their 
chances  with  an  audit. 

Sixty  percent  of  500  IT  execu¬ 
tives  Network  World  surveyed  ear¬ 
lier  this  year  concurred,  saying 
that  ensuring  compliance  with 
regulations  over  the  next  12 
months  is  “extremely  important.” 
Close  to  half  of  the  respondents 
also  said  they  will  upgrade  their 
applications  or  purchase  new 
applications  this  year  to  ensure 
compliance  with  regulations. 

“Vendors  are  drooling  over  the 
fact  that  IT  shops  need  to  comply 
with  regulations,  and  right  now 
they  are  preying  on  customer 
ignorance  and  panic  to  meet 
deadlines,”  says  Mike 
Neuenschwander,  a  senior  ana¬ 
lyst  at  Burton  Group.  Yet  vendor 
promises  aren’t  totally  without 
merit,  he  adds:  “Vendors  can  pro¬ 
vide  tools  to  help  automate  the 
work  needed  to  verify  that  a  com¬ 
pany  is  compliant,  but  there  is  no 
suite  of  products  to  ensure  you’re 
compliant.” 

While  application  suppliers 
such  as  Oracle,  PeopleSoft  and 
SAP  are  adding  features  to  im¬ 
prove  financial  and  other  report¬ 
ing  processes,  management  ven¬ 
dors  say  their  tools  will  help  cus¬ 
tomers  ensure  their  systems,  sec¬ 
urity  measures  and  management 
processes  are  in  line  with  regula¬ 
tions  such  as  the  Sarbanes-Oxley 
Act,  Gramm-Leach-Bliley  Act  and 
Health  Insurance  Portability  and 
Accountability  Act  (HIPAA). 

The  general  idea  is  that  once  a 
company  determines  how  to  be 
compliant  and  has  its  policies  in 
place,  management  software  can 
automate  the  processes  needed 
to  stay  compliant.  That  can  range 
from  tracking  and  documenting 
changes  to  monitoring  system 
access  and  usage  to  producing 
reports  specific  to  regulations. 

Configuration,  desktop,  and 
identity  and  security  manage¬ 
ment  wares  are  being  pushed  as 
compliance  tools,  and  industry 
watchers  say  they  can  help  IT 
teams  monitor  and  document 
their  compliance  efforts. 

“Operational  reporting,  proper 
notification  and  escalations,  and 
basically  keeping  track  of  who 
people  are  and  what  they  are 
doing  needs  to  be  automated  for 
IT  shops  to  realistically  tackle 
compliance,”  says  Mike  West, 
senior  program  director  at  Saug- 
atuck  Technology  Research. 

IT  managers  agree.  Jim  Vellella, 
associate  director  of  ISD  Tech¬ 


nical  Services  at  the  University  of 
Pittsburgh  Medical  Center  in 
Pennsylvania, says  HIPAA  requires 
“IT  to  be  able  to  provide  clear, 
concise,  authoritative  monitoring 
and  documentation  of  the  securi¬ 
ty  measures”  in  place,  and  the 
ability  to  alert  and  report  on  any 
deficiencies.  He  uses  Ecora  soft¬ 
ware  to  provide  the  monitoring 
and  reporting  required  by  HIPAA. 

“We  simply  do  not  have  time  or 
staff  to  provide  the  type  of  consis¬ 
tent,  repeatable  analysis  and 
reporting  on  hundreds  of  systems 
that  an  automated  product  like 
Ecora  provides,”  he  says. 

Ecora’s  change  and  configura¬ 
tion  software  can  be  installed  on 
an  administrative  workstation  to 
collect  data  from  multiple  operat¬ 
ing  systems,  including  Microsoft, 
Unix  and  Linux,  and  network 
devices  from  the  likes  of  Cisco. 
The  software  also  can  retrieve 
data  from  Active  Directory, 
Exchange,  NetWare,  Citrix,  Oracle 
and  other  systems.  It  then  com¬ 
pares  the  data  against  a  pre-de¬ 
fined  model  of  a  compliant  con¬ 
figuration  and  alerts  staff  to 
exceptions  and  unacceptable 
changes. 

The  new  tools  also  can  help  IT 
meet  new  process  requirements. 
For  example,  Sarbanes-Oxley’s 
Section  404  requires  companies 
to  establish  and  certify  a  system 
of  internal  controls  and  pro¬ 
cesses  used  to  obtain  financial 
results.  That  means  IT  needs  to 


be  able  to  prove  that  financial 
data  followed  a  specified  work- 
flow  across  multiple  systems 
and  restrict  data  access  to 
authorized  users. 

James  Kritcher,vice  president  of 
IT  at  White  Electronic  Designs  in 
Phoenix, says  the  public  semicon¬ 
ductor  packaging  company  stays 
on  top  of  Sarbanes-Oxley  using 
Ecora  software  in  concert  with 
processes  spelled  out  in  the  IT 
Infrastructure  Library  and  Control 


Objectives  for  Information  and 
related  Technology  The  combina¬ 
tion  should  help  ward  off  poten¬ 
tial  audits. 

“There  is  no  [set  of  generally 
accepted  accounting  practices] 
for  IT  that  tells  you  how  to  get 
through  an  audit,”  he  says.  Ecora’s 
software  scans  his  network  for  IT 
issues  that  could  cause  compli¬ 
ance  problems,  such  as  a  firewall 
that  is  open  to  attack  or  a  server 
that  is  not  properly  patched. 

“We  use  the  software  to  take  a 
baseline  of  all  our  configurations 
and  compare  what  we  have 
against  how  it  should  be,”  Kritcher 
says.  “It  helps  us  document  that 
we  are  taking  the  proper  steps.” 

In  Charles  Revei’s  case,  HIPAA 
requires  him  to  ensure  privacy  for 
patient  data,  including  informa¬ 
tion  stored  in  multiple  IT  systems. 
The  computer  operations  manag¬ 
er  at  Maryland  General  Hospital 
in  Baltimore  says  he  uses  features 
in  ScriptLogic’s  Desktop  Authority 
to  push  out  HIPAA-compliant 
security  policies  and  software 
patches  to  client  machines  on  a 
one-to-many  basis.  “When  I  make 
a  change  to  our  overall  security 
model  the  software  will  push  out 
the  policies  to  the  entire  infra¬ 
structure,”  he  says. 

ScriptLogic  software  also  gives 
his  staff  the  power  to  shut  down 
clients  remotely  when  a  breach  is 
suspected. “If  a  general-use  PC  on 
the  campus  had  access  to  a 
patient  care  system,  and  for  some 
reason  that  was  left  unattended  or 
an  unauthorized  user  accessed  it, 
we  can  limit  that  access  remote^’ 
Revei  adds.  (Read  more  about 
ScriptLogic,  page  17.) 


For  all  the  advances,  no  single 
vendor  offers  a  solution  that 
addresses  all  IT  compliance 
needs.  Still  missing  from  vendor 
offerings, Vellella  says,  is  the  capa¬ 
bility  to  monitor  multiple  operat¬ 
ing  systems,  platforms  and  appli¬ 
cations.  He  says  it  would  be  ideal 
to  have  software  that  provides  an 
end-to-end  view  from  “desktop  to 
Web  portal  to  application  server 
to  database  server”  that  would 
automate  the  correlation  of  com¬ 
pliance  events  between  disparate 
systems  and  prevent  IT  managers 
from  having  to  manually  com¬ 
pare  data  to  determine  the 
source  of  a  problem. 

Also,  the  features  provided  in 
management  software  can  only 
address  IT  processes  and  poli¬ 
cies.  Industry  watchers  say  IT 
shops  must  align  their  compli¬ 
ance  policies  with  their  specific 
businesses.“Every  industry  is  reg¬ 
ulated  now,  and  there  isn’t  one 
product  that  provides  compli¬ 
ance  rules  for  all  the  regulations,” 
Burton  Group’s  Neuenschwander 
says. 

He  also  warns  IT  not  to  view 
compliance  as  a  one-time  project 
with  a  set  end  date:  “Compliance 
requires  ongoing  process  and 
policy  improvements.” 

White  Electronic  Designs’ 
Kritcher  agrees.  “Compliance  is 
a  moving  target,”  he  says.  “You 
become  compliant  for  one  reg¬ 
ulation  and  then  breathe  a  little 
easier,  but  it’s  factored  into 
our  budget  and  staffing  for  the 
long  term.”B 

Get  more  information  online. 
DocFinder:  3545 
www.nwfusion.com 


IBM  rolls  out  low-end  storage  systems 


■  BY  DENI  CONNOR 

IBM  last  week  expanded  its  storage  systems  with 
the  introduction  of  two  arrays  that  should  help  small 
and  midsize  businesses  and  workgroup  and  depart¬ 
mental  users  more  easily  store  database,  email  and 
Web  serving  data. 

The  TotalStorage  DS300  is  an  iSCSI  array  that 
attaches  to  the  Gigabit  Ethernet  network  and  is 
designed  for  midsize  businesses  that  might  not  want 
to  deploy  more-expensive  and  complex  Fibre 
Channel  storagearea  networks.The  array  which  can 
be  expanded  to  as  much  as  2T  bytes,  features  hot- 
swappable  Ultra320  SCSI  drives  and  power  supplies, 
and  a  battery-backed  data  cache  for  redundancy 

The  TotalStorage  DS400  is  a  2G-byte  Fibre  Channel 
array  that  scales  in  capacity  to  5.8T  bytes.  It  is  avail¬ 
able  in  a  3U-high  enclosure. 

Analysts  say  these  arrays  are  appropriate  for  the  de¬ 
partmental, and  small  and  midsize  enterprise  market. 

“ISCSI  is  the  way  to  go  for  the  SMB  market,  espe¬ 
cially  the  small  segment,”  says  Stephanie  Balaouras, 
senior  analyst  with  The  Yankee  Group.“Yankee  does¬ 


n’t  believe  that  small  and  midsized  enterprises  will 
be  willing  to  introduce  Fibre  Channel  into  their  envi¬ 
ronments  because  it’s  too  complicated.” 

Balaouras  estimates  that  60%  of  these  organiza¬ 
tions  typically  spend  less  than  $60,000  a  year  on  stor¬ 
age  and  40%  of  them  need  storage  capacity  ranging 
from  IT  to  10T  bytes. 

Both  systems  ship  with  IBM’s  ServeRAID  manage¬ 
ment  software  and  run  Windows  and  Linux.  They 
also  include  Global  Mirror  and  Global  Copy  soft¬ 
ware,  which  lets  customers  replicate  data  for  disas¬ 
ter-recovery  purposes. 

Each  system  is  rack-mountable  and  can  be  config¬ 
ured  with  single  or  dual  controllers.  Each  controller 
supports  redundant  data  paths. 

The  systems  are  intended  to  compete  with  HP’s 
Modular  Smart  Arrays  and  the  Dell/EMC  AX  100.  IBM 
positions  the  DS300  and  DS400  as  suitable  storage 
systems  for  its  eServer  xSeries  and  BladeCenter  rack- 
able  systems. 

The  DS300  starts  at  $4,650;  the  DS400  starts  at 
$7,200.  Both  systems  are  expected  to  ship  later  this 
month.  ■ 


Edison's  name  is  synonymous  with  innovation. 
In  Enterprise  Wireless  LANs,  it's  Airespace. 


Edison  is  known,  unquestionably,  as  one  of  history's  greatest 
innovators.  But  what  was  his  first  step  toward  greatness?  He 
gained  an  unparalleled  level  of  expertise  in  his  field.  The  rest 
is  history.  Airespace  takes  the  same  approach  with  their  Wireless 
LAN  systems.  Airespace  is  not  a  switch  company  that  "glued  on" 
an  RF  antenna.  We  came  from  the  RF  side  and  we  have  brought 
together  real  wireless  expertise  with  standards-based  product 
innovations  to  hit  the  air  running. 


The  Airespace  WLAN  system  easily  enables  seamless  and  secure 
wireless  services  under  load,  including  real-time  applications  such 
as  voice  and  video.  And  unlike  other  WLAN  products,  it  provides 
an  integrated  wireless  prevention  and  protection  system.  Unique 
from  "grounded"  point  appliances,  Airespace  integrates  key 
capabilities  such  as  monitoring,  identity,  and  location  into  the 
infrastructure  rather  than  requiring  a  separate,  overlay  AP  network. 

Learn  more  about  taking  advantage  of  our  expertise  and  innovation. 
Visit  www.airespace.com/topten 
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Veritas  buys  e-mail  archiving  stalwart 


Big  spender 

Veritas  has  increased  its  resources  through  $900  million-plus  in  acquisitions  over 
the  past  few  years. 

....  . 

Company  acquired 

When 

Amount 

Technology  focus 

NuView 

August  1999 

Not  disclosed 

Cluster  management 

The  Kernel  Group 

January  2002 

Not  disclosed 

Backup  and  recovery 

Precise  Software 

December  2002 

$537  million 

Performance  management 

Jareva 

December  2002 

$62  million 

Server  automation 

Ejasent 

January  2004 

$59  million 

Provisioning 

Invio 

July  2004 

$35  million 

Process  automation 

KVault  Software 

August  2004 

$225  million 

E-mail  archiving 

in  a  bigger  way”  he  says.  “Even 


a  BY  DENI  CONNOR 

Veritas  Software  last  week 
expanded  its  data  protection 
and  management  portfolio 
with  the  $225  million  acquisi¬ 
tion  of  KVault  Software,  a  lead¬ 
ing  supplier  of  e-mail  archiving 
software. 

KVault’s  KVS  technology  dub¬ 
bed  Enterprise  Vault,  gives  Veritas 
another  tool  to  offer  customers 
that  are  attempting  to  meet  com¬ 
pliance  regulations  such  as  those 
outlined  by  the  Securities  and 
Exchange  Commission. 

“KVS  is  both  a  market  and 
mind-share  leader,”  says  Peter 
Gerr,  an  analyst  with  Enterprise 
Strategy  Group.  “The  company 
helped  establish  e-mail  and  mes¬ 
sage  archiving  as  a  very  impor¬ 
tant  line  of  defense  against  com¬ 
pliance  threats.” 

Not  only  does  software  such  as 
KVS’  help  companies  better  track 
e-mail,  but  it  also  conserves  stor¬ 
age  resources,  Gerr  says. 

KVS  says  its  software  is  used  to 
manage  1.7  million  users’ e-mail. 

Gartner  projects  that  e-mail 
migration  and  archiving  will  grow 
at  a  57%  compound  rate  through 
2007  as  companies  rush  to  com¬ 
ply  with  regulations  such  as  the 
SEC’s  Rule  17a-3  and  -4  and 
Sarbanes-Oxley,  which  require 
that  e-mail  and  instant  messages 
be  preserved. 

This  helps  explain  why  e-mail 
archiving  companies  have  be¬ 
come  hot  properties.  Last  year, 
EMC  bought  Legato  Systems’ 
e-mail  archiving  product,  HP  ac¬ 
quired  Persist  Technologies,  and 
Connected  purchased  Archive-it. 
Earlier  this  year,  Zantaz  snapped 
up  Educom  TS,  and  last  week 
FrontBridge  Technologies  bought 
MessageRite. 

IDC  says  e-mail  traffic  has 
tripled  in  the  past  five  years. 

The  acquisition  of  KVS,  which 
leaves  Veritas  with  $2.5  billion  in 
cash  and  short-term  investments, 
is  one  in  a  long  string  of  buyouts 
that  the  company  says  back  its 
vision  of  automating  the  manage¬ 
ment  of  data  center  networks. 

KVS’  Enterprise  Vault  is  de¬ 
signed  specifically  for  Windows 
environments.  It  enables  archiv¬ 
ing  of  e-mail  and  files  from 
Microsoft  Exchange  SharePoint 
and  Office,  and  documents  cre¬ 
ated  by  Microsoft  file  systems. 

Veritas  says  it  plans  to  integrate 
its  Windows-based  Data  LifeCycle 
Manager,  formerly  known  as  Net- 
Backup  Storage  Migrator,  into 
Enterprise  Vault. 


“KVS  is  a  great  catch  for 
Veritas,”  says  Aaron  Huslage, 
senior  system  administrator  for 
supply-chain  management  com¬ 
pany  CNF  Service  in  Portland, 
Ore.“KVS’  Enterprise  Vault  is  eas¬ 
ier  to  deal  with  than  Storage 
Migrator,  that’s  for  sure. 

“Veritas  has  been  looking  for  a 
way  to  get  into  e-mail  archiving 


though  Storage  Migrator  on  Unix 
is  great,  Storage  Migrator  on 
Windows  was  a  little  bit  funk/ 

Sources  say  Storage  Migrator 
for  Unix  will  be  integrated  into  a 
future  Unix-based  version  of 
Enterprise  Vault. 

Veritas  will  run  KVS,  based  in 
Berkshire,  England,  as  a  sub¬ 


sidiary  KVS  had  2003  revenue  of 
$23  million  and  is  the  only  com¬ 
pany  listed  in  the  “Leaders”  posi¬ 
tion  in  Gartner’s  Magic  Quadrant 
for  e-mail  active-archiving  prod¬ 
ucts.  As  much  as  25%  of  KVS’ 
installations  are  on  EMC’s  Cent- 
era,  considered  by  many  to  be 
the  front-runner  in  compliance 
hardware.  ■ 
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CA  updates  IT  service  mgmt 


■  BY  DENISE  DUBIE 

Computer  Associates  this  week  will  unveil  five  up¬ 
graded  applications  that  are  designed  to  work 
together  at  helping  customers  deliver  and  manage 
IT  services. 

The  upgraded  pieces  of  CAs  Unicenter  IT  Service 
Management  suite  include: 

•  Service  Catalog  2.2,  which  helps  manage  user 
requests  and  defines  services. 

•  Service  Fulfillment  2.2,  which  automates 
processes  and  kicks  off  actions  such  as  trouble- 
ticket  generation. 

•  Service  Meter  2.2,  which  tracks  IT  services  usage. 

•  Service  Assure  2.2,  which  helps  IT  staff  and  busi¬ 
ness  units  define  service-level  agreements. 

•  Service  Accounting  2.2,  which  quantifies  the  IT 
service  in  financial  terms. 

The  products  can  be  purchased  separately  or  as 
part  of  a  suite,  and  CA  now  has  let  them  share  com¬ 
mon  definitions,  workflow  and  process  data. 

“Rules  in  the  products  are  now  defined  in  a  con¬ 
sistent  manner,  which  also  produces  a  more  com¬ 
mon  user  interface,”  says  Lokesh  Jindal,  a  director 
of  product  marketing  at  CA.“Maybe  in  the  past,  pro¬ 
visioning  was  defined  one  way  in  Catalog  and 
another  way  in  Fulfillment.  Now  the  guts  of  the 
technology  architecture  are  the  same." 

The  software  is  designed  to  be  part  of  an  IT  ser¬ 
vice  management  scheme,  which  encompasses 
multiple  products  and  processes  to  let  companies 
deliver  the  infrastructure  and  application  resources 
that  end  users  need  to  perform  their  jobs  or  fulfill 
customer  demands.  For  example,  maintaining  an 
SAP  application  or  keeping  e-mail  up  and  running 
could  be  defined  as  an  IT  service.  According  to 
Summit  Strategies,  typical  IT  service  management 
implementations  are  phased  into  production  over 


the  course  of  three  to  five  years,  and  products  are 
generally  not  available  as  out  of  the  box  from  one 
vendor. 

“It’s  a  huge  undertaking  to  collect  all  the  data, 
report  on  it  and  associate  it  back  in  terms  of  the  cost 
and  service  levels  required  for  the  business,”  says 
Mary  Johnston  Turner,  vice  president  and  practice 
director  at  Summit  Strategies. 

Frameworks  such  as  the  IT  Infrastructure  Library 
(1T1L)  and  Control  Objectives  for  Information  and 
related  Technology  offer  guidelines  for  establishing 
processes,  and  vendors  such  as  CA  provide  software 
and  services  to  support  the  processes.  CA  says  its 
upgraded  applications  follow  the  ITIL  framework. 
CAs  service  management  software  competes  with 
that  from  BMC  Software,  HP  and  Peregrine. 

Setting  it  up 

CAs  Service  Catalog  is  installed  on  a  dedicated 
Unix,  Windows  or  Linux  server,  and  network  man¬ 
agers  authorize  administrators  to  be  able  to  access 
the  software  directly  to  define  services  that  an  IT 
shop  can  deliver.  End  users  also  can  define  the 
types  of  IT  services  in  a  self-service  Web  user  inter¬ 
face.  Service  Accounting  and  Service  Assure  work 
similarly 

Service  Meter  also  uses  software  installed  on  a 
server, and  either  queries  network, systems  and  client 
devices  for  usage  data  or  deploys  agents  to  collect 
the  information  from  disparate  machines.  Service 
Fulfillment, also  installed  on  a  server, can  work  stand¬ 
alone,  but  CA  says  it  is  best  used  when  integrated 
with  other  management  tools  to  kick  off  corrective 
actions  or  generate  trouble-tickets. 

'rhe  products  could  require  customers  to  contract 
professional  services.  CA  says  a  typical  large  corpo¬ 
rate  implementation  of  several  products  in  the  suite 
could  cost  about  $500,000.  ■ 
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ScriptLogic  beefs  up 
desktop  mgmt  tools 


■  BY  JOHN  FONTANA 

ScriptLogic  last  week  introduced  the  lat¬ 
est  version  of  its  desktop  management  soft¬ 
ware  with  an  eye  toward  helping  corpora¬ 
tions  support  the  rollout  of  Windows  XP 
Service  Pack  2. 

Desktop  Authority  6.0  adds  a  slew  of  fea¬ 
tures,  including  configuration  settings  for 
enabling  or  disabling  XP  SP2’s  personal 
firewall,  and  opening  and  closing  ports  so 
that  certain  applications  work  properly  The 
software  also  has  a  new  administrative 
interface  that  provides  a  centralized  view 
of  configuration  settings  and  corporate 
desktops,  and  new  profile  management 
features  for  Outlook. 

Desktop  Authority  lets  users  remotely  set, 
change  and  manage  configuration  settings 
on  corporate  desktops.  The  new  version 
emphasizes  a  “pull”  model,  with  the  desk¬ 
tops  initiating  communication  with  the 
Desktop  Authority  server. 

ScriptLogic  supports  that  model  by  act¬ 
ing  as  the  logon  script  when  users  sign  on. 
With  the  pull  model,  the  software  can  cir¬ 
cumvent  the  XP  SP2  firewall,  which  by 
default  locks  down  ports  used  by  remote 
management  software  such  as  Desktop 
Authority.  Instead  of  desktops  running  the 
Windows  logon  script,  Desktop  Authority 
takes  over  as  the  logon  script  and  loads 
configuration  information  to  desktops 
when  they  attach  to  the  network  and 
before  the  firewall  is  activated. 

Customer  reaction 

Users  are  hoping  that  model  will  help 
make  desktop  management  easier  with 
XP  SP2. 

“If  I  can  get  remote  management  to 
work  with  the  XP  firewall,  I  will  leave  the 
firewall  on  for  some  desktops,”  says 


Philippe  Vanier,  director  of  IT  at  the 
Hebrew  Academy  in  Montreal.  But  Vanier 
says  he  is  still  working  on  getting  Desktop 
Authority  and  the  XP  SP2  firewall  to  work 
together  smoothly 

The  Windows  Firewall  Management  fea¬ 
ture  uses  configuration  changes  to  close 
and  open  ports  that  let  the  desktop  com¬ 
municate  with  networked  servers, such  as  a 
desktop  anti-virus  agent  downloading  sig¬ 
nature  updates. 

On  top  of  the  new  features  in  the  XP  SP2 
firewall,  Vanier  says  the  Windows  Explorer¬ 
like  interface  is  a  big  improvement. 

“Everything  is  centralized.  1  see  every¬ 
thing  in  one  viewf  he  says.  The  new  inter¬ 
face  presents  a  tree  structure  based  on  a 
company’s  organizational  makeup  and 
shows  which  settings  will  be  applied  to 
which  sites,  departments  and  organiza¬ 
tional  groups. 

ScriptLogic  also  has  expanded  its 
Enterprise  Profiles  feature  within  Desk¬ 
top  Authority  to  let  administrators  design 
hierarchical  configuration  settings  that 
can  include  up  to  28  management  ob¬ 
jects  such  as  drive  mappings  and  printer 
assignments.  The  software’s  Validation 
Logic,  which  confirms  the  specific  sets  of 
users  or  computers  that  will  receive  sys¬ 
tem  modifications,  now  supports  multi¬ 
ple  rules  within  each  Enterprise  Profile, 
with  each  rule  supporting  up  to  20  vali¬ 
dation  tests. 

Desktop  Authority  also  has  expanded  its 
Outlook  management  feature  with  settings 
for  creating  standardized  configurations  of 
the  e-mail  client  software. 

Desktop  Authority  6.0  costs  $26  per  user. 

ScriptLogic  competes  with  Microsoft, 
LANDesk,  Altiris,  Configuresoft  and  oth¬ 
ers  with  its  configuration  management 
tools.  ■ 


Opnet  tackles  configuration  mgmt. 


■  BY  DENISE  DUBIE 

Opnet  Technologies  last  week  said  by 
next  January  it  would  join  the  growing 
number  of  management  vendors  offering 
users  software  applications  designed  to 
monitor,  report  and  track  configuration 
data  and  changes  across  multi-vendor  net¬ 
work  devices. 

Opnet’s  Network  Configuration  Manage¬ 
ment  software  will  install  on  a  dedicated 
server  and  use  native  device  APIs  to  col¬ 
lect  configuration  data.  The  software  will 
store  device  data,  query  the  devices  on  a 
scheduled  basis  to  track  changes  and 
then  compare  changes  made  against  pre¬ 
defined  configuration  policies  or  rules. 
Network  Configuration  Management  also 
will  integrate  with  Opnet’s  IT  Guru  and 
NetDoctor,  which  can  apply  more  than 


400  rules  on  routing  and  security  implica¬ 
tions  of  changes  made  to  devices.  The 
software  will  include  capabilities  to  let 
users  add  their  own  rules  to  the  software. 

The  company  told  Network  World  last 
week  that  it  would  make  its  Network 
Configuration  Management  software  gen¬ 
erally  available  to  customers  early  next 
year.  Pricing  will  be  announced  then. 

“Opnet  is  already  collecting  configuration 
data  and  building  models  of  networks  and 
applications, so  this  is  a  natural  evolution  of 
the  technology’ says  Glenn  O’Donnell,  pro¬ 
gram  director  at  Meta  Group.  “It  compares 
the  configuration  data  against  the  ideal 
policies  the  company  wants  to  maintain, 
and  now  Opnet  is  providing  more  visibility 
into  changes  and  their  impact.” 

Opnet  competes  with  AlterPoint,  Cisco, 
Intelliden  andVoyence.H 
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■  LAN/WAN  SWITCHES  AND  ROUTERS 

■  ACCESS  DEVICES  ■  SERVERS  ■  VPNS 

■  OPERATING  SYSTEMS  ■  NETWORKED  STORAGE 

■  VOIP  ■  WIRELESS  NETWORKS 


■  Start-up  Orion  Multisystems 

last  week  unveiled  its  Orion  Cluster 
Workstation,  which  packs  the 
power  of  a  PC  cluster  into  a  desktop- 
size  package  that  uses  low-power 
chips  and  an  innovative  motherboard 
design,  the  company  says.  The  Orion 
Cluster  Workstation  takes  the  idea  of 
a  cluster  to  the  desktop.  Orion’s  first 
product,  the  DT-12,  is  a  12-node  clus¬ 
ter  that  measures  18.4  inches  long  by 
24  inches  wide  by  3.8  inches  high, 
about  the  same  as  a  conventional 
desktop  PC.  But  this  PC  puts  out 
about  18  gigaflops  of  sustained  per¬ 
formance,  and  36  gigaflops  of  peak 
performance  under  certain  condi¬ 
tions.  Transmeta's  90-nanometer 
Efficeon  processors  are  why  Orion 
can  pack  so  much  performance  into 
a  small  package,  the  company  says. 
The  standard  board  features  12 
nodes  on  each  board,  and  a  12-port 
Gigabit  Ethernet  switch.  A  base  con¬ 
figuration  of  Orion's  DT-12  desktop 
system  comes  with  512M  bytes  of 
memory  per  node  and  a  160G-byte 
hard  drive  for  $9,000  to  $10,000.  The 
desk-side  systems  will  start  at  48- 
node  configurations  and  are  expand¬ 
able  up  to  96  nodes.  Pricing  for  those 
configurations  is  yet  to  be  deter¬ 
mined,  but  the  96-node  configuration 
should  cost  less  than  $100,000,  the 
company  says. 

■  Dell  last  week  introduced  a  desk¬ 
top  support  services  suite  designed 
for  companies  with  overstretched  IT 
staffs.  Called  PC  Workspace  Serv¬ 
ices,  the  suite  includes  asset  track¬ 
ing,  a  support  Web  portal  and  on-site 
visits  from  field  technicians,  and  24-7 
help  desk  functions.  Dell  previously 
provided  some  of  the  services  includ¬ 
ed  in  this  suite  but  not  as  part  of  a 
single  program.  Some  of  the  tasks 
Dell  performs  as  part  of  the  PC 
Workspace  Services  are  installation, 
repairs,  moving  users  to  new  loca¬ 
tions  and  software  support.  The 
menu  of  services  can  be  customized 
based  on  a  client’s  needs  and  can 
cost  as  little  as  about  $20  per  desk¬ 
top,  per  month,  for  a  basic  offering 
with  24-7  help  desk  support. 


1 0G  still  propping  for  big  dance 

Prices  fall,  new  standards  make  technology  more  practical  —  but  challenges  remain, 


10G  Ethernet,  pro  and  con 

Observers  say  10G  Ethernet  might  be  on  the  brink  of  widespread 
adoption,  but  other  say  the  technology  is  still  a  few  years  off. 

Give  me  10G  now  because . . . 

•  10G  pricing  has  dropped  86%  in  two  years. 

•  Demand  for  apps  such  as  IP  video  and  peer-to-peer  soon  will  drive  up  bandwidth  needs. 

•  It’s  time  to  upgrade  desktops  to  Gigabit  and  the  core  to  10G  bit/sec  Ethernet. 

I’ll  wait  on  10G  because . . . 

•  It’s  still  less  expensive  to  link  Gigabit  connections  for  higher-bandwidth  trunks. 

•  It  might  require  major  upgrades  to  backbone  switches  and  cabling  infrastructure. 

•  I’m  waiting  for  a  copper-based  standard. 


■  BY  PHIL  HOCHMUTH 

While  not  yet  a  technology  for  the 
masses,  more  corporations  are  adopting 
10G  Ethernet  as  prices  fall  and  vendors 
refine  their  10G  product  portfolios. 

Whether  10G  Ethernet  is  ready  for  wide¬ 
spread  corporate  deployments  in  switches, 
wiring  closets  and  desktops  is  debatable. 
But  what’s  inarguable  are  the  changes  in 
the  technology  over  the  past  few  years  and 
efficiencies  in  manufacturing  that  have 
decreased  prices  by  more  than  85%  since 
10G  gear  was  introduced  in  2002. 

While  the  average  10G  Ethernet  port  cost 
more  than  $55,000  in  2002,  that  price 
dropped  to  $15,000  per  port  a  year  ago  and 
now  averages  about  $7,500,  according  to 
Synergy  Research  Group.  At  the  same  time, 
port  shipments  of  10G  Ethernet  have  in¬ 
creased;  only  1,000  ports  were  shipped  in 
all  of  2002,  while  more  than  15,000  were 
sold  in  the  first  half  of  this  year. 

The  lower  prices  for  10G  Ethernet  are  the 
result  of  less-expensive  optical  compo¬ 
nents  from  suppliers.  One  area  of  ad¬ 
vancement  has  been  in  10G  Ethernet  phys¬ 
ical  layer  connections  —  the  lasers  that 
shoot  and  receive  transmissions  of  light 


over  fiber.  Newer  modular  port  technolo¬ 
gies, such  as  XENPAC  and  XFP  modules, are 
examples  of  these  lower-cost  ports. 

“We’ve  seen  lower  costs  on  the  optical 
part  of  it  with  the  development  of  new 
optics  like  XENPAC  and  other  kinds  of 
optics  that  are  less  expensive  to  manufac¬ 
ture,”  says  Richard  Nelson,  director  of  com¬ 
puting  at  the  University  of  Southern  Cali¬ 
fornia’s  Information  Sciences  Institute 
(USC-lSl).The  Los  Angeles  organization, the 
computer  research  arm  of  USC,  runs  many 
Foundry  Networks  10G  Ethernet  switches 


in  its  backbone  and  to  connect  to  other 
USC  campuses. 

Tighter-designed  components  also  has 
led  to  switch  companies  offering  multi-port 
10G  Ethernet  blades  that  are  non-blocking 
and  relatively  inexpensive.  Vendors  are 
packing  up  to  four  full-duplex,  non-block¬ 
ing  ports  onto  one  card  with  up  to  40G  bit/ 
sec  of  bandwidth  between  the  modules. 

“The  four-port  blade  is  really  popular^ 
says  Joshua  Johnson,  an  analyst  with  Syn¬ 
ergy  Research  Group.  Cisco,  Enterasys  Net- 

See  10G,  page  22 


F5,  Redline  launch  data  center  gateways 


■  BY  PHIL  HOCHMUTH 

F5  Networks  and  Redline  Networks  this 
week  are  set  to  launch  versions  of  their 
respective  Layer  4-7  switch/traffic  accelera¬ 
tor  boxes,  with  both  vendors  promising 
improved  application  performance  and 
security  for  corporate  data  centers. 

From  F5  comes  the  first  update  in  two 
years  to  its  Big-IP  Layer  4-7  switch. The  new 
box  could  help  customers  run  application 
servers  faster  with  better  security  the  ven¬ 
dor  says.  Redline  says  it’s  offering  a  similar 
promise  to  data  center  architects  with  a 
box  that  can  speed  application  perfor¬ 
mance  by  caching  instances  of  applica¬ 
tions  such  as  SAP  or  Oracle  in  memory 

F5  says  it  has  rewritten  its  Layer  4-7  switch 
operating  system  from  scratch.  The  new 
system  lets  IP  traffic  be  controlled,  filtered 
and  secured  on  a  finer  level  than  it  could 
be  with  previous  Big-IP  versions. 

The  new  platform  from  F5  is  long  over¬ 


due,  since  F5  stopped  adding  major  new 
features  to  its  Big-IP  platform  several  years 
ago,  says  Peter  Firstbrook,  an  analyst  with 
Meta  Group.’They  were  kind  of  tapping  out 
with  old  Big-IP  platform.” 

F5’s  Traffic  Management  Operating  Sys¬ 
tem  (TM/OS)  differs  from  past  Big-IP  plat¬ 
forms  in  that  the  software  lets  an  F5  switch 
inspect  traffic  flows  and  apply  policies  to 
traffic  on  a  request  and  a  response  basis. 
This  means  Layer  4  and  Layer  7  switching 
happens  on  both  the  server  side  and  client 
side  of  the  network.  F5  says  this  “ap¬ 
plication  proxy”  capability  lets  the  switch 
associate  packets  with  certain  applications 
and  identify  exchanges  between  clients 
and  servers  on  an  IP  network.This  also  can 
be  used  to  remove  ancillary  information  in 
packets  from  a  Web  site  or  cookies. 

“This  could  include  what  operating  sys¬ 
tem  a  business  is  using,  or  it  could  contain 
other  sensitive  proprietary  information,” 
See  Redline,  page  22 


Up  for  grabs? 

Unlike  the  Cisco-dominated  Layer 
2-3  switch  market,  Layer  4-7 
switching  is  a  more  wide-open 
arena. 
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Can  you  afford  to  change? 

The  time  has  come,  they  say,  to  transform  your  IT.  But  how? 
On  what  scale?  As  a  technology  company,  HP  creates— as 
no  financial  institution  can-opportunities  you  once  thought 
impossible,  and  lets  you  change  without  fear.  HP  consultants 
help  you  identify  the  hardware,  software  and  services  you’ll 
need.  Then  HP  Financial  Services  helps  you  finance  global 
migration  and  manage  the  technology  over  its  lifespan,  while 
minimizing  financial  risks.  Once  you  can  afford  change,  you 
might  even  embrace  it.  www.hp.com/info/hpfs 
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■  still  get  the  occasional  e-mail  about  a 
column  I  wrote  in  February  (“Rock 
the  ’Net  vote,”  www.nwfusion.com, 
DocFinder:  3526)  about  electronic  voting 
devices,  equating  my  support  of  electron¬ 
ic  voting  with  a  desire  to  see  the  upcom¬ 
ing  November  elections  subverted  in 
some  way 

This  seems  to  reflect  a  trend  I’ve  noticed 
in  the  mass  media  and  among  those  whom 
I  thought  were  reasoned  advocates  of  tech¬ 
nological  advance.  In  particular,  there’s  the 
issue  of  the  “paper  trail.” 

Many  want  electronic  voting  machines  to 


Paper  trail  won’t  cure  e-voting  ills 


spit  out  a  paper  receipt  to  be  placed  in  a 
sealed  box  to  be  used  in  case  a  recount  is 
needed.  Fine  so  far,  but  the  issue  has  taken 
on  cause  celebre  status  and  I  fear  many 
believe  that  not  only  is  a  paper  receipt  nec¬ 
essary  to  ensure  proper  voting  but  also  that 
it’s  sufficient  to  do  so.  And  that’s  the  real 
problem  with  this  publicity 

There’s  nothing  magical  about  a  paper 
receipt.  To  take  just  one  scenario,  suppose 
someone  has  hacked  a  voting  terminal  so 
that  it  shows,  on  screen,  a  vote  for 
Candidate  A  (the  one  you  wished  to  vote 
for)  while  recording  it  as  a  vote  for 
Candidate  B.  How  hard  would  it  be  for  the 
hacker  to  also  ensure  that  the  paper  receipt 
also  indicated  the  vote  was  for  Candidate  A 
so  that  you  felt  sure  your  vote  was  counted 
exactly  as  you  cast  it?  It’s  childishly  simple, 
as  most  of  us  know. 

Aha,  you  say  but  when  the  people  talked 


among  themselves  and  realized  that  the 
vote  totals  were  at  odds  with  their  recollec¬ 
tion  of  how  they  voted, a  recount  would  be 
instituted  and  the  receipts  would  show  the 
proper  votes!  Well, yeah,  provided  the  hack¬ 
ers  were  totally  unsophisticated  about  how 
elections  work.  In  a  close  presidential  elec¬ 
tion  in  the  U.S.,  the  switch  of  little  more 
than  a  handful  of  votes  can  change  the  out¬ 
come  because  of  the  method  we  use.  It’s 
not  necessary  for  the  winning  candidate  to 
acquire  a  majority  of  all  votes  cast,  just  a 
majority  in  enough  states  to  ensure  that  a 
majority  of  the  electoral  votes  go  to  that 
candidate.  It’s  generally  conceded,  for 
example,  that  had  a  few  hundred  votes  in 
very  particular  precincts  been  changed  in 
the  1960  election,  Richard  Nixon  and  not 
John  Kennedy  would  have  been  the  35th 
president  of  the  U.S. 

Paper  receipts  are  fine,  but  they  won’t 


guarantee  accuracy  of  the  vote  count. 

Kearns,  a  former  network  administrator, 
is  a  freelance  writer  and  consultant  in 
Silicon  Valley. 


Tip  of  the  Week 


Last  time  out  I  took  Novell 
to  task  over  its  free  offer 
of  Linux  tools.  Some  thought 
I  was  too  harsh.  For  more 
on  this  issue,  see  last 
week  s  Focus  on  NetWare 
newsletter  (DocFinder: 

3527),  which  casts  new  light 
on  the  situation. 


Swan  dives  into  WAN  compression 


■  BY  TIM  GREENE 

Swan  Labs  thinks  making  WAN  links  more 
responsive  is  such  a  hot  idea  that  it  bought 
the  WAN-acceleration  line  of  ITWorx. 

Called  NetCelera,  the  ITWorx  products 
optimize  WAN  links  by  searching  traffic 
streams  for  repeating  patterns  and  replac¬ 
ing  them  with  shorter  sequences  to  cut  traf¬ 
fic.  Rather  than  perform  this  compression 
at  the  network  layer,  NetCelera  does  so  at 
the  session  layer,  which  lets  the  gear  recog¬ 
nize  application  flows  rather  than  just 
streams  of  bits. 

NetCelera  boxes  are  deployed  in  pairs  at 
both  ends  of  WAN  connections,  where  they 
examine  traffic  as  it  leaves  a  LAN  and  look 
for  patterns. 

The  equipment  competes  against  other 
gear  that  also  attempts  to  reduce  WAN  traf¬ 
fic  and  improve  performance  across  WAN 


10G 

continued  from  page  19 

works,  Extreme  Networks,  Force  10  Net¬ 
works  and  Foundry  offer  such  a  blade  for 
their  respective  switch  chassis.  “That  tech¬ 
nology  has  allowed  vendors  to  lower  the 
per-port  price  below  $10,000,”  he  says. 

Price  reductions  in  10G  Ethernet  gear 
have  not  been  limited  to  switches.  Prices 
also  are  dropping  for  10G  server  network 
interface  cards  (NIC).  While  Intel  debuted 
its  10G  Ethernet  NIC  in  March,  priced  at 
about  $8,000,  vendors  such  as  S2IO  and 
Chelsio  Communications  now  offer  10G 
NICs  as  low  as  $2,000. 

Another  potentially  price-lowering  tech¬ 
nology  just  around  the  corner  is  lOGBase-T. 
This  will  let  10G  Ethernet  run  over  Category 
6  cabling  up  to  330  feet.  Although  this  stan¬ 
dard  is  not  expected  to  be  approved  until 
2006,  vendors  already  have  announced 


links  but  that  may  use  different  mecha¬ 
nisms  and  compression  algorithms  to  do 
so.  These  competitors  include  Expand, 
Peribit,  Packeteer,  Riverbed  and  NetScaler. 

Swan  CEO  Andrew  Foss  says  that  next 
month  the  company  will  release  new  soft¬ 
ware  for  its  appliances  to  boost  compres¬ 
sion,  make  more  efficient  use  of  TCP  sup¬ 
port  QoS  and  provide  central  management 
of  NetCelera  devices.  Swan  is  the  third 
company  Foss  has  created.  He  founded 
Network  Translation,  makers  of  the  PIX- 
firewall,  which  Cisco  acquired  in  1995.  In 
1999,  he  formed  Caw  Networks,  which 
Spirent  Communications  acquired  in  2002. 

The  challenge  Swan  faces  is  that  the  best 
market  for  this  type  of  equipment  is  large 
businesses  with  international  locations, 
says  Peter  Firstbrook,  senior  research  ana¬ 
lyst  with  Meta  Group.  Cramming  more  traf¬ 
fic  onto  expensive  international  lines  pro¬ 


products  or  have  products  in  development. 
Solarflare,  a  maker  of  transceiver  compo¬ 
nents  for  Ethernet  switch  vendors,  says  it 
has  a  chip  that  can  run  10G  Ethernet  over  a 
Category  5e  cable  up  to  330  feet  (no 
release  date  has  been  set).  Also  anticipat¬ 
ing  10G  over  unshielded  twisted  pair  (UTP) 
cabling  is  Krone,  which  makes  structured 
cabling  systems.  Krone  offers  a  Category  6 
cabling  product  the  company  says  will  be 
compatible  with  lOGBase-T. Switch  vendors 
such  as  Cisco  and  Foundry  are  more  mum 
on  lOGBase-T  developments. 

“It’s  still  a  ways  out  there,” USC-lSI’s  Nelson 
says  of  10G  over  copper.  “As  with  any  kind 
of  Ethernet  technology  that  moves  from 
fiber  to  copper,  distance  limitations  are  a 
concern.  But  it  does  give  the  potential  for 
lower  cost  on  the  interface  side.” 

Analysts  say  users  who  held  off  on  first- 
generation  10G  gear  made  the  right  move. 

Core  LAN  switches  installed  in  businesses 


vides  immediate  payback  that  attracts  busi¬ 
nesses.  They  avoid  having  to  buy  more 
bandwidth  and  get  better  application  per- . 
formance,  he  says. 

Swan  was  formed  in  January  and 
bought  the  NetCelera  line  this  spring  for 
an  undisclosed  amount  of  stock.  It  might 
gain  some  credibility  from  recent  $15  mil¬ 
lion  in  funding  from  Norwest  Venture 
Partners  and  Doll  Capital  Management. 
The  company  was  founded  with  money 
from  individuals  and  Benhamou  Global 
Ventures.  Eric  Benhamou,  former  chair¬ 
man  of  3Com,  serves  as  chairman  of 
Swan. 

Benhamou  acknowledges  there  are 
other  vendors  selling  this  type  of  gear,  but 
says  that  breaking  the  former  ITWorx  tech¬ 
nology  out  into  a  separate  company  with 
adequate  funding  will  make  the  NetCelera 
products  more  attractive  to  customers.  ■ 


more  than  2  years  old  might  not  handle  full 
10G  Ethernet  because  the  chassis  were  lim¬ 
ited  to  about  8G  bit/sec  of  bandwidth 
between  slots  and  the  switch  backplane. 
Synergy’s  Johnson  says  most  major  switch 
vendors  have  introduced  next-generation 
switch  platforms  over  the  past  18  months 
that  let  users  fully  use  10G  Ethernet. 

“It  really  paid  to  wait  and  get  the  non- 
blocking  backplane,  which  you  really  need 
for  it  to  work  well,”  Johnson  says. 

But  while  prices  are  falling,  10G  Ethernet 
still  accounts  for  only  about  1%  of  the 
Ethernet  switch  market  in  terms  of  port 
shipments  so  far  in  2004. 

“10  Gigabit  will  look  like  a  good  invest¬ 
ment  a  few  years  from  now(  Johnson  says.  ■ 


■  More  about  10G.  PAGES  37,  47 


|  Redline 

continued  from  page  19 

says  Erik  Giesa,  vice  president  of  product 
management  for  F5. 

The  architecture  lets  users  apply  security 
polices,  rate  limiting  and  other  policies  to 
specific  application  flows,  or  aspects  of 
Web  transactions,  F5  says. 

“F5  is  trying  to  push  a  little  but  up  into  the 
infrastructure  stack,”  Firstbrook  says. 
“Before,  load  balancing  decisions  were 
made  by  network  engineers.”  But  the  capa¬ 
bilities  in  the  new  TM/OS  now  bring  F5 
closer  to  the  application  development  side 
of  the  house  in  a  corporation,  he  adds. 

F5  also  is  announcing  three  new  Big-IP 
Traffic  Manager  switches,  which  range 
from  four  to  16  Gigabit  Ethernet  ports  and 
offer  different  levels  of  CPU  and  memory 
capacity  F5  says  its  TM/OS  software  also 
will  work  on  current  Big-IP  switches.  F5’s 
Big-IP  application  switches  range  from 
$17,000  to  $35,000,  and  are  available  now. 

Meanwhile,  Redline  —  a  newcomer  to 
the  data  center  appliance  market  com¬ 
pared  with  9-year-old  F5  —  also  is  launch¬ 
ing  a  new  version  of  its  data  center  appli¬ 
ance  software.  Redline  Rios  4.0  is  software 
for  the  vendor’s  EIX  appliance  line,  and 
offers  what  the  vendor  calls  its  3G  Caching 
feature. 

Redline’s  EIX  appliances  are  deployed  in 
front  of  corporate  or  Web  data  centers  and 
offer  compression,  Secure  Sockets  Layer 
acceleration,  server  load  balancing  and 
denial-of-service  attack  prevention.  The  3G 
Caching  feature  will  let  customers  cache 
Web  site  data  and  application  data  such  as 
Web-enabled  SAP  or  Oracle  applications, 
which  usually  can’t  be  delivered  through 
standard  Web-caching  technology 
Caching  this  type  of  content  on  a  Web 
site  or  application  server  offloads  proces¬ 
sor  burden  to  the  EIX  box  and  makes  appli¬ 
cation  servers  more  available  to  end  users, 
Redline  says. 

The  Redline  4.0  Rios  operating  system 
with  3G  Cache  starts  at  $5,000.  ■ 


Isn't  it  time  you  had  a  network  that  worked? 


With  a  wide  variety  of  leading  brands,  fast  shipping  and  knowledgeable  account  managers,  at  CDW 
you'll  find  people  who  are  dedicated  to  getting  you  the  right  technology  for  your  needs-when  you  need  it. 


THE  RIGHT  TECHNOLOGY.  RIGHT  AWAY.  "  ►  CDW.com*  800.399.4CDW 

In  Canada,  call  800.387.2173  •  CDW.ca 
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Comtrol  DeviceMaster  8-Port 
Serial  Hub 


D-Link  DGS-1 21 6T— 16-port 
Gigabit  Switch 


•  8-port  serial  device  server 

•  RS-232  serial  communications 

•  Rugged  metal  housing  and  temperature 
range  of  -20  to  60°  C 

•  Supports  PortVision  Management  software 


$53756 

CDW  634987 


•  Ethernet-enable  a  variety  of  serial 
devices  such  as  printers,  scanners,  bar 
code  readers  and  more 

•  Common  applications  include  Point-of- 
Sale  (POS),  building  security  and  medical 
device  connectivity 

•  Integrated  Web  interface  for  easy 
access  and  configuration  over  the  Internet 

•  Brought  to  you  by  Digi  International,  the 
leader  in  Connectware  with  over  20  million 
ports  shipped  worldwide  since  1985 


Digi  One™  SP 


The  Enterprise  Comedian 


■  Includes  16  10/1 00/1 000BASE-T  ports  and 
two  combo  SFP  expansion  slots 
1  Features  a  non-blocking  switching  capacity 
of  up  to  32Gbps,  wire-speed  forwarding, 
4,000  MAC  addresses  and  auto 
negotiation/detection 
1  Supports  L2  port-based  VLAN,  port-based 
QoS,  link  aggregation,  port  mirroring  and  2 
hardware  priority  queues 
1  Can  be  managed  via  Web  browser  and  auto 
discovery  utility 


D-Link 


$399 

CDW  652033 


$1462 


Connectware 


CDW  42531 7 


Customer  understands  that  CDW  is  not  the  manufacturer  of  the  products  purchased  by  customer  hereunder  and  the  only  warranties  offered  are  those  of  the  manufacturer,  not  CDW.  All  pricing  is  subject  to  change.  CDW  reserves  the  right  to  make  adjustments  to  pricing,  products  and  service  offerings  for  reasons  including,  but  not  limited  to, 
changing  market  conditions,  product  discontinuation,  product  unavailability,  manufacturer  price  changes  and  errors  in  advertisements.  All  orders  are  subject  to  product  availability.  Therefore,  CDW  cannot  guarantee  that  it  will  be  able  to  fulfill  customer's  orders.  The  terms  and  conditions  of  sale  are  limited  to  those  contained  herein  and  on  CDW's 
Web  Site  at  CDW.com.  Notice  of  objection  to  and  rejection  of  any  additional  or  different  terms  in  any  form  delivered  by  customer  is  hereby  given.  ©  2004  CDW  Corporation  NW/NC  9/04 


Industry’s  Only  Complete, 
Front-Accessible  Compact 
l  CGbE  Edge  Switches 


Fastlron  Edge  X424 


f0W»£P,T  Fastlron  Edge  X448 


Integral  Hot- 
Swappable  AC  &  DC 
Power  Supplies  for 
Redundancy  and  High 
Availability 


Extensive  Security  and  DoS 
Protection  Capabilities 
Including  BD2, 1  x  and  MAC 
Authentication,  Dynamic  VLAN 
and  Security  Policies,  ACLs, 
and  Advanced  Network 
Monitoring 


Advanced  Layer  2  Features, 
Upgradeable  to  Full  Layer  3, 
Including  RIP,  OSPF,  BGP,  PIM 
DM,  PIM-SM,  DVMRP, 

AND  IGMP 


Fastlron'  Edge  X-Series  switches  let  you  do  more  with  less  —  less  size, 
less  money,  yet  more  capability.  Compact  form.  Immense  capabilities.  10  Gigabit 
Ethernet  performance  from  edge  to  core  at  a  price  you  can  afford.  They  are 
purpose-built  to  deliver  wire-speed  Gigabit  and  10  Gigabit  Ethernet  performance  to  workgroup, 
server  farm,  edge  aggregation,  small/medium  enterprise  backbone,  and  cluster  computing 
networks  at  prices  that  bring  the  power  and  scalability  of  10  Gigabit  Ethernet  within  reach  for 
enterprises  large  and  small.  Fastlron  Edge  X-Series  switches  deliver  24  or  48  ports  of 
10/100/1000  with  4  combo  SEE  ports,  plus  optional  1  or  2  ports  of  lOGbE.  Fastlron  Edge 
X-Series  switches  give  you  the  lowest  total  cost  ofownership  and  the  best  investment  value  ofany 
comparable  switch  on  the  market.  Get  a  competitive  edge  - —  get  a  Fastlron  Edge  X-Series  switch. 
Call  1 .888.TUKBOLAN  (Direct  +  1  408.586.1700)  or  www.foundrvnetworks.com/fex 


The  Power  of  Performance 
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■  PORTALS  ■  MESSAGING/GROUPWARE 

■  E-COMMERCE  ■  SECURITY 

■  MIDDLEWARE  ■  DIRECTORIES 

■  NETWORK  AND  SYSTEMS  MANAGEMENT 

■  WEB  SERVICES 


Lessons  from  leading  users 


Research  center  plugs  physical  security  into  its  network 


■  BY  ELLEN  MESSMER 

Keeping  its  huge  data  center  hum¬ 
ming  is  vital  at  NASA  Ames 
Research  Center,  where  4,000  sci¬ 
entists  are  working  on  aeronautics  and 
biotechnology  projects.  When  a  new 
custom-built  air  conditioning  system 
couldn’t  keep  the  research  outfit’s  net¬ 
work  equipment  at  the  right  tempera¬ 
ture,  it  was  the  IT  department’s  equiva¬ 
lent  of  a  space  mission  gone  wrong. 

“It  failed  miserably  says  George  Alger, 
assistant  division  chief  of  the  applied 
information  technologies  division  and 
IT  services  manager.  He  worried  that  the 
A/C  fluctuations  threatened  to  disrupt 
or  even  damage  the  50  racks  of  servers 
and  switches  housed  in  the  Moffett 
Field,  Calif.,  data  center. 

“The  air  conditioning  should  have 
maintained  68  degrees  to  70  degrees  in 
See  NASA,  page  26 


NASA's  big  brother 

NASA’s  Ames  Research  Center  uses  sensor  devices  from  NetBotz  to  help  control  everything  from  air 
conditioning  fluctuations  to  physical  security. 


i  The  NetBotz  devices  include 

(6  The  NetBotz  devices  can  sense  smoke  and 

€ 

I  NetBotz  sensors  send  e-mail  and 

an  IP-based  video  camera 

detect  the  chirping  sounds  of  uninter-ruptible 

paging  alerts  about  temperature  and 

and  motion  sensor  that 

power  supplies  (UPS). They  also  work  with 

airflow  problems  over  NASA's  LAN 

monitor  doors  to  rooms  with 

other  sensors,  such  as  R  AE  Systems  sensors 

to  a  dedicated  physical  security  monitor 

restricted  access. 

that  measure  dangerous  gas  levels. 

that  is  manned  round-the-clock. 

24-hour  physical 
security  monitor 


Servers 


Gelestix  improves  all-in-one  security  packages 

■  BY  JOHN  FONTANA 


■The  Organization  for  the  Ad¬ 
vancement  of  Structured  Infor¬ 
mation  Standards  this  week  an 
nounced  it  would  take  over  the  devel¬ 
opment  of  the  Data  Center  Markup 
Language  Framework  Specification 
1.0. The  XML-based  specification  will 
provide  an  inventory  of  data  center 
elements,  describe  how  those  pieces 
interoperate  and  define  the  various 
policies  that  bind  them  together. 

■  E-mail  security  company  Front- 
Bridge  last  week  bought  Message- 
Rite,  a  maker  of  technology  for  arch¬ 
iving  e-mail  and  instant  messages. 
The  purchase,  for  an  undisclosed 
amount  of  cash  and  stock,  adds 
MessageRite’s  technology  for  storing 
electronic  messages  and  evaluating 
regulatory  compliance  to  Front- 
Bridge’s  portfolio  of  e-mail  services. 


Celestix  Networks  this  week  is  introduc¬ 
ing  a  security  appliance  built  on  Micro¬ 
soft’s  Internet  Security  and  Acceleration 
Server  2004  that  is  designed  to  give  users 
firewall,  VPN  and  Web  caching  capabili¬ 
ties  in  one  box. 

The  company  will  introduce  three  ver¬ 
sions  of  its  Multifunction  Security  Appli¬ 
ance  (MSA)  —  the  2000,  4000  and  5000. 
The  appliances  are  tailored  for  small,  mid¬ 
size  and  large  businesses. 

Microsoft  released  the  Standard  Edition 
of  Internet  Security  and  Acceleration 
Server  (ISA)  2004  earlier  this  year.  The  ISA 
Server  promises  improved  network  secur¬ 
ity  and  performance  by  delivering  better 
application  security,  simplified  manage¬ 
ment,  tighter  integration  and  faster  cach¬ 
ing,  Microsoft  says.  The  ISA  Server  is  de¬ 
signed  to  help  users  protect  Microsoft  ap¬ 
plications  such  as  the  Exchange  e-mail 
server,  Internet  Information  Services  Web 
server  and  ShareFbint  collaboration  tools. 

Several  vendors  are  developing  hard¬ 
ware  appliances  with  the  ISA  2004  at  their 


core,  including  Network  Engines,  Pyramid 
Computer,  RimApp  Technologies  and 
Wortmann  AG.  HP  already  has  released 
the  ProLiant  DL320  Firewall/VPN/Cache 
server  appliance,  which  features  the  ISA 
software. 

“We  think  the  security  appliance  market 
is  an  eventual  trend,  but  it  will  develop  in 
fits  and  starts,”  says  Earl  Perkins,  an  analyst 
with  Meta  Group.  That  is  the  case,  Perkins 
says,  because  users  still  have  not  decided 
just  what  security  functions  they  want  to 
commit  to  an  appliance. 

With  the  2004  version  of  the  ISA,  Micro¬ 
soft  added  new  application-layer  filtering 
and  firewall  capabilities,  multiple-network 
configurations  and  real-time  monitoring 
of  log  entries  to  answer  critics  who  said 
the  firewall  was  not  ready  for  prime  time. 
The  ISA  2004  also  is  integrated  with  Active 
Directory  so  users  can  apply  group-  and 
user-level  controls  to  firewall  policy  and 
VPN  authentication. 

“Arguably  [an  appliance  vendor]  could 
ship  a  more  secure  and  tightly  configured 
implementation  than  if  you  installed  it 
out-of-the-box  and  deployed  it  on  your 


own  server,”  says  Peter  Pawlak,  an  analyst 
with  independent  research  firm  Direc¬ 
tions  on  Microsoft.“But  I  think  these  appli¬ 
ances  are  not  as  much  for  large  corpora¬ 
tions  as  they  are  for  smaller  companies.” 

Celestix  is  taking  advantage  of  the  im¬ 
provements  and  adding  some  of  its  own  to 
MSA,  such  as  TCP/IP  tweaks  to  protect 
against  denial-of-service  attacks  and  a 
Web-based  interface. 

MSA2000  features  a  Pentium  4  Celeron 
processor  and  has  two  auto-sensing 
10/100/1000  and  two  10/100  Ethernet 
ports.  The  MSA4000  has  the  same  proces¬ 
sor  as  the  2000  with  two  auto-sensing  10/ 
100/1000  and  six  10/100  Ethernet  ports. 

The  MSA5000  comes  with  a  Xeon  pro¬ 
cessor  and  eight  auto-sensing  Gigabit 
Ethernet  ports. 

The  2000  costs  $3,500;  the  4000,  $6,000; 
and  the  5000,  $1 0,000.  ■ 
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The  Internet  is  not  a  new  telephone 


FCC  Chairman  Michael  Powell  seems 
to  have  found  that  the  thin  air  in  the 
mountains  of  Colorado  can  encour¬ 
age  clarity  —  in  any  case  he  was  quite 
clear  about  a  number  of  issues  when  inter¬ 
viewed  at  the  recent  Aspen  Summit,  The 
Future  of  the  Internet. 

It’s  a  shame  this  just  made  some  of  his 
inconsistent  thinking  more  evident. 

The  meeting  was  organized  by  The 
Progress  &  Freedom  Foundation  (www.pff. 
org),  which  describes  itself  on  its  Web  page 
as  “a  market-oriented  think  tank  that  stud¬ 
ies  the  digital  revolution  and  its  implica¬ 
tions  for  public  policy’  I’m  far  from  sure 
what  a  “market-oriented  think  tank”  might 
be,  but  it  seems  clear  from  the  Web  page 


that  the  group  never  met  a  regulation  it 
liked  —  an  interesting  group  to  host  the 
chairman  of  one  of  the  most  entrenched  of 
U.S.  government  regulatory  bodies. 

Fbwell  was  interviewed  on  the  first  day  of 
the  summit.  (A  conference  agenda  with 
links  to  streaming  video  of  the  talks  can  be 
found  at  www.nwfusion.com,  DocFinder: 
3525.)  He  said  a  bunch  of  things  that  a  mar¬ 
ket-oriented  crowd  would  applaud  and 
that  sounded  a  bit  out  of  place  coming 
from  the  chair  of  the  FCC,  with  its  three- 
quarters  of  a  century  of  assuming  that  reg¬ 
ulations  will  cure  all  ills. 

Powell  said  that  the  FCC  was  changing. 
He  said  he  took  over  “an  agency  that  prin¬ 
cipally  looks  backward  and  tried  to  incul¬ 
cate  it  with  a  culture  that  looks  forward.” My 
observation  is  that  the  FCC  still  feels  rather 
more  comfortable  in  looking  at  past  regu¬ 
latory  glory  than  permitting  the  future. 

Powell  said  that  a  “real  question  facing 
the  country  is:‘Is  the  Internet  going  to  com¬ 
mon  carriage  or  not?”’  He  defined  com¬ 


mon  carriage  as  “government  intervention 
in  the  prices,  terms  and  conditions  under 
which  service  is  offered  .’’Later  he  said  that 
the“seminal  question  is:‘Do  we  convert  the 
Internet  into  a  big  black  telephone  only 
because  we  are  too  lazy  or  not  intellectu¬ 
ally  creative  enough  to  do  something  other 
than  just  export  what  we  are  used  to?’  ” 

Powell  said  he  would  like  the  basic  regu¬ 
latory  assumption  to  be  reversed  — 
instead  of  someone  convincing  the  regula¬ 
tors  not  to  regulate  (because  that  almost 
never  sticks).  He  asked:“Why  shouldn’t  the 
government  be  the  one  with  the  burden  of 
proof  [to  regulate]?” Why  shouldn’t  a  clear 
need  for  regulation  be  shown  before  any 
regulation  can  be  imposed? 

This  sounds,  at  least  to  me,  like  good  stuff, 
and  it  seems  like  Powell  was  not  just  play¬ 
ing  to  the  crowd.  He  talks  this  way  and  acts 
this  way  quite  often,  but  he  has  some  trou¬ 
ble  translating  this  philosophy  into  action. 
Far  too  often  he  seems  to  act  on  principle 
rather  than  on  the  real  world.  This  is  espe¬ 


cially  true  when  it  comes  to  regulations 
about  people  trying  to  compete  with 
incumbent  phone  companies.  His  propos¬ 
als  ignore  the  last  century  of  government- 
enforced  rules  requiring  citizens  to  pay 
many  times  over  to  build  a  ubiquitous  tele¬ 
com  infrastructure.  He  seems  to  think  that 
it  would  be  easy  for  other  companies  to 
overcome  that  head  start.  Sometimes  by 
looking  back  you  can  figure  out  the  pre¬ 
sent  is  not  simple. 

Powell  said  that  “the  Internet  is  something 
different  —  it’s  not  a  new  telephone.” True 
enough,  but  we  cannot  pretend  that  there 
are  no  phones  or  any  phone  legacy  as  we 
set  the  stage  for  the  future. 

Disclaimer:  Harvard  has  a  hard  time  sep¬ 
arating  legacy  from  required,  though  is  try¬ 
ing  to  do  so  heading  into  the  future.  But  the 
above  complaint  is  mine. 

Bradner  is  a  consultant  with  Howard 
University’s  University  Information  Systems. 
He  can  be  reached  at  sob@sob.com. 


BMC  cooks  up  batch  mgmt.  tools 


■  BY  DENISE  DUBIE 

BMC  Software  this  week  is  set  to  unveil 
software  that  can  alert  IT  managers  when 
batch  job  failures  or  performance  decreas¬ 
es  will  affect  critical  business  services. 

BMC’s  Batch  Impact  Manager  (BIM)  is 
add-on  software  to  the 
vendor’s  Control-M  job 
scheduling  and  batch 
processing  management 
software.  BIM  uses  data 
Control-M  collects  to 
track  the  performance  of 
scheduled  jobs  and  send 
alerts  when  a  slowdown 
in  batch  processing 
could  affect  a  business 
service,  such  as  check 
processing,  or  order 
e-mail  notifications. 

With  batch  processing, 
a  group  of  similar 
requests  is  stored  and 
then  executed  at  one 
time,  without  intervention  from  a  user. 

Control-M  uses  a  combination  of  server 
software  and  distributed  agents  to  collect 
data  from  managed  systems  that  perform 
jobs  such  as  check  processing  or  data 
warehousing. Customers  can  use  Control-M 
to  define  jobs,  configure  the  software  to 
automatically  start  jobs,  and  monitor  their 
progress  and  completion.  BIM  is  installed 
on  the  same  dedicated  Unix,  Windows  or 
Linux  server  as  Control-M,  and  customers 
can  access  BIM  through  a  Web  interface. 

Customers  can  define  in  BIM  their  most 
critical  business  services  and  set  perfor¬ 
mance  thresholds  to  send  alerts  when  the 
process  isn’t  meeting  its  deadline.  Using 
data  stored  in  Control-M  and  collected  via 
its  agents,  BIM  software  builds  a  dependen¬ 


cy  map,  or  model  of  the  paths  jobs  must  fol¬ 
low,  of  all  jobs  that  need  to  be  on  schedule 
to  ensure  the  pre-defined  business  service 
is  completed  on  time. 

For  example,  if  the  batch  processing  for 
data  warehousing  needs  to  be  completed 
by  7  a.m.,  an  IT  manager  could  configure 
the  software  to  alert 
when  the  process  misses 
one  scheduled  job  at  2 
a.m.  A  problem  even  five 
hours  earlier  could  affect 
the  service  because  the 
jobs  are  performed  in  a 
series  that  needs  to  be 
completed  in  order  and 
in  a  certain  timeframe. 

At  Cambridge  Integra¬ 
ted  Services  Group,  a 
worker’s  compensation 
and  liability  insurance 
provider  in  Columbus, 
Ohio,  check  processing  is 
critical.  Control-M  is  ins¬ 
talled  on  five  servers 
monitoring  53  systems,  with  3,200  defined 
batch-processing  jobs  that  use  nine  paths. 
Product  Control  Coordinator  Laurie  Kenley 
says  the  group’s  check-processing  business 
service  requires  completion  of  120  jobs. 

“It’s  essential  that  our  check  processing  to 
vendors  is  done  by  6  a.m.  every  day  and 
[BIM]  alerts  us  when  we  might  miss  the 
deadline,”  Kenley  says. 

Control-M  competes  with  similar  offer¬ 
ings  from  the  likes  of  Computer  Associates 
and  IBM,  but  BMC  executives  say  the  capa¬ 
bilities  included  in  BIM  that  let  customers 
link  batch  processing  performance  to  busi¬ 
ness  services  hasn’t  been  included  in  com¬ 
petitive  products. 

BIM  is  available  this  week,  and  pricing 
starts  at  $4,500. ■ 
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continued  from  page  25 

the  room,  but  it  didn’t,”  Alger  says  about 
the  custom-built  system,  which  cost 
about  $800,000. 

NASA  Ames  became  aware  of  the  high 
and  low  temperature  spikes  because  two 
physical-security  sensors  from  NetBotz 
continuously  monitor  the  data  center’s 
environment. 

Positioned  on  the  wall,  the  NetBotz  sen¬ 
sors  send  e-mail  and  paging  alerts  about 
problems  discovered  in  temperature,  air 
flow  and  other  conditions  over  NASAs 
LAN  to  a  monitor  dedicated  to  physical 
security  that  is  manned  24-7. 

The  NetBotz  findings  convinced  the  IT 
department  it  had  to  rip  out  the  air  con¬ 
ditioning  system  and  start  over  this  year. 

“We  scrubbed  the  entire  design,"  Alger 
says.  NASA  Ames  accepts  the  blame  for 
the  data  center’s  AC  problem,  which  it 
corrected  through  closer  coordination 
between  the  IT  department  and  various 
designers  and  contractors. 

The  boxes  can  detect  other  data  center 
threats,  such  as  smoke,  and  can  hear  the 
sounds  of  uninterruptible  power  sup¬ 
plies  (UPS)  calling  for  attention. 

NASA  Ames  uses  products  from  other 
vendors  to  monitor  other  factors,  such  as 
the  presence  of  specific  gaseous  sub¬ 
stances  like  hydrogen,  which  can  be 
given  off  by  some  older  UPS  batteries. 
“Hydrogen  concentrations  coming  from 
batteries  can  be  explosive,”  Alger  says. 

NASA  Ames  uses  Arrgh  Manufactur¬ 
ing’s  hydrogen-gas  sensor,  which  can  be 
plugged  into  the  NetBotz  box. 

Although  NetBotz  can’t  accept  all  phys¬ 
ical  monitoring  gear,  it  does  work  with 


RAE  Systems  sensors  that  measure  dan¬ 
gerous  gases  as  well  as  Liebert  surge-pro¬ 
tection  and  other  equipment. Monitoring 
information  and  alerts  —  even  standard 
SNMP  traffic  from  routers  and  switches 
—  can  be  sent  to  the  NetBotz  monitor. 

NetBotz  also  can  work  with  many  dry 
contact  sensors,  which  can  detect  glass 
breaking  and  water  or  vibrations. 

This  fall,  NetBotz  intends  to  add  sup¬ 
port  for  the  IEEE  standard  0-5v  and  4- 
20MA  sensor  interfaces  typically  used  in 
industrial  and  process  automation 
equipment  in  water-treatment  and  chem¬ 
ical  plants,  and  nuclear  facilities  to  give 
information  about  flow  rates  and  tank 
levels. 

Unwelcome  visitors 

NetBotz  also  helps  watch  for  intruders 
who  try  to  slip  into  restricted  high-securi- 
ty  areas. 

The  NetBotz  devices  include  an  IP- 
based  video  camera  and  a  motion  sen¬ 
sor  that  continuously  provides  surveil¬ 
lance.  NASA  Ames  is  deploying  about  20 
NetBotz  appliances  for  this  purpose 
around  doors  to  rooms  that  remain  off- 
limits  to  unauthorized  personnel.  Al¬ 
together,  NASA  Ames  has  spent  about 
$35,000  on  its  NetBotz  deployment. 

“We  have  restricted  areas,  and  we’ve 
found  contractors  in  these  areas  where 
they  are  not  supposed  to  be,”  Alger  says. 
Although  these  rooms  typically  have 
card-key  access,  intruders  can  gain  entry 
by  following  someone  who  just  gained 
entry  to  the  room. 

NASA  Ames  provides  security  person¬ 
nel  with  information  about  what  individ¬ 
uals  should  be  in  certain  locations  at 
Moffett  Field  at  particular  times  so  if  the 
NetBotz  video  camera  shows  suspicious 
activity,  a  guard  can  investigate.  ■ 
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Batch  business 

Gartner  estimates 
that  through  2005 
more  than 

50% 

of  all  critical  business 
transactions  still  will 
be  completed  via 
batch  jobs  rather 
than  real-time 
processing. 

\ _ > 


Consider  the  dots  connected.  From  one  coast  to  the  other,  Transportation 
Insurance  Brokers  are  serving  clients  more  securely.  Sharing  data  more  quickly. 
Communicating  more  seamlessly.  And  doing  it  all  for  almost  $2,000  less  a  month, 
thanks  to  an  IP-VPN  solution  we  designed,  delivered  and  now  manage.  And  the 
strong,  reliable  backbone  of  the  SBC  network.  Find  out  more  about  how  we're 
helping  TIB  connect  the  dots  at  sbc.com/dots.  GOING  BEYOND  THE  CALL.* 
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Presence  applications  poised  for  takeoff 


■  BY  JOHN  FONTANA 

There  is  a  killer  on  the  loose  under  the  covers  of 
instant  messaging,  and  no,  it  isn’t  malicious;  it’s  a 
killer  application  that  has  the  potential  to  revolution¬ 
ize  the  way  companies  collaborate  and  communicate. 

The  killer  app  is  presence.  IM  users  see  evidence  of  it 
every  day  in  their  buddy  lists  as  a  little  icon  that  shows 
someone  is  online.  But  down  the  road,  experts  say  pres¬ 
ence  will  separate  itself  from  IM  and  evolve  into  a  net¬ 
work  service  tapped  by  applications  and  corporate  com¬ 
munication  services,  including  telephony 
“In  the  future,  presence  will  be  the  underlying  [net¬ 
work]  capability  and  IM  will  just  be  one  of  the  apps  that 
takes  advantage  of  that,”  says  Melanie  Turek,  an  analyst 
with  Nemertes  Research.Tresence  is  the  killer  app.” 

Why?  Because  presence  ultimately  is  seen  as  a  real-time 
communications,  messaging  and  routing  infrastructure 
that  not  only  supports  collaborative  applications  for  user- 
to-user  interaction,  but  also  supports  communication 
between  applications  and  users.  It  also  supports  applica- 
tion-to-application  integration,  whereby  presence  infra¬ 
structure  is  used  to  announce  which  applications  are  up, 
what  their  functions  are  and  what  types  of  protocols  they 
accept. 

“In  the  end,  presence  is  metadata,”  says  Mike  Gotta,  an 
analyst  with  Meta  Group.“It  can  contain  information 
about  someone  or  something.” 

But  before  presence  explodes  on  the  scene,  it  faces 
myriad  challenges,  including  corporate  buy-in  to  its 
potential  and  power,  management  tools  to  control  it  and, 
most  importantly,  the  development  of  interoperability 
standards,  the  same  liberator  that  unshackled  e-mail  near¬ 
ly  a  decade  ago. 

Early  adopters 

The  challenges  are  many,  but  early  adopters  already  see 
the  potential  in  doing  the  heavy  lifting. 

“In  the  next  six  to  eight  months  we  want  to  have  some¬ 
thing  in  place  for  a  one-stop  shop  to  get  the  right  infor¬ 
mation  to  the  right  people  at  the  right  time,” says  Heidi 
Rebottaro,  project  manager  for  application  development 
for  Nektar  Therapeutics  in  San  Carlos,  Calif. The  company 
develops  methods  for  administering  drugs  such  as  an 
inhalation  technology  used  with  a  new  dry  form  of 
insulin. 

Rebottaro  is  using  IBM  Lotus  Instant  Messaging  and 
Web  Conferencing  server,  which  supports  presence  capa¬ 
bilities  within  Nektar’s  portal  of  collaborative  applications 
and  online  training  courses.“We  use  presence  to  find 
instructors,  authors  of  documents  and  in  chat  rooms  for 
team  members,”  Rebottaro  says. 

But  she  has  thoughts  of  a  presence-based  publish-and- 
subscribe  channel  that  would  let  applications  instantly 
send  new  information  to  end  users  or  to  support  work- 
flow  applications  that  could  seek  out  available  managers 
to  approve  purchase  orders. 

“The  infrastructure  for  presence  and  awareness  is  in 
place,”  Rebottaro  says.“We  just  need  to  add  that  top  layer 
of  applications. We  just  need  to  find  the  time  to  do  it.” 

Vendors  are  finding  time  for  presence,  and  its  inclusion 
in  popular  applications  could  light  a  fire. 
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Integration  lesson 

A  well-designed  presence  system  should 
include  a  specific  set  of  features  and  functions 
when  integrated  with  collaborative  or 
communication  applications,  according  to 
consulting  firm  Collaborative  Strategies. 


•  Should  integrate  with  corporate  directories. 

•  Can  send  pop-up  messages  to  a  group  or  an  entire 
organization. 

•  Can  limit  or  grant  access  and  to  change  status. 

•  Can  extend  system  with  custom  status  designators. 

•  Controls  to  disable  user  right  to  manually  change 
status. 

•  Automatic  posting  of  “idle/away"  status  and  “auto 
reply"  messages. 

•  Should  integrate  with  corporate  directories. 

•  Can  detect  status  of  phones  (on/off  hook)  or  mobile 
devices. 

•  Can  detect  agents,  avatars  or  aliases. 

V _ > 

IBM  has  integrated  presence  into  Lotus  Notes,  which 
has  more  than  100  million  users,  and  Microsoft  has  added 
it  to  Office,  which  sits  on  90%  of  corporate  desktops,  and 
SharePoint  Portal  Server  using  Live  Communications 
Server  (LCS)  as  the  back-end  infrastructure.  Microsoft 
recently  signed  a  deal  with  AOL  and  Yahoo  to  connect 
LCS  users  to  public  IM  networks,  a  precursor  to  the  con¬ 
nectivity  interoperability  standards  promise. 

“It’s  fair  to  say  that  presence  is  a  relatively  nascent  tech¬ 
nology  but  we  see  the  concept  eventually  expanding 
beyond  people  to  servers  and  applications,”  says  Ken 
Bisconti,  IBM’s  vice  president  of  messaging  products. 

Jabber,  Inc.,  which  develops  real-time  communication 
server  platforms  for  developing  IM  and  presence-enabled 
applications,  is  fashioning  its  XCP  platform  into  an  appli¬ 
cation  server  of  sorts  not  only  for  presence,  but  also  for 
messaging,  routing  and  XML-application  development.  In 
September,  it  will  release  a  publish-and-subscribe  technol¬ 
ogy  called  Information  Broker  for  pushing  content  out  to 
users. 

IM  Logic’s  IM  Linkage  includes  a  robot,  or  “bot”  feature 
that  can  find  users,  pull  them  into  a  Web  conference,  pro¬ 
vide  a  chat  room  pre-loaded  with  key  data  and  dial 
phone  numbers  for  voice  support.  Siemens’  HiPath  Open- 
Scape  portal  uses  presence  based  on  Microsoft’s  LCS  to 
support  conferencing,  workflows  and  other  communica¬ 
tion  to  mobile  and  fixed  phones,  e-mail  and  other  collab¬ 
orative  applications. WiredRed’s  e/POP  is  already  the 
backbone  for  business  communications  provider  Mitel’s 
Your  Assistant  service,  which  marries  presence  informa¬ 
tion  from  PCs  with  presence  from  VoIP  and  traditional 
phone  service. 

Monster.com  has  deployed  an  integrated  information 


client  on  some  of  its  desktops  with  Nortel’s  Multimedia 
Communications  Server  5100  on  the  back  end,  which 
integrates  voice,  data  and  video  services. 

Presence  information  lets  users  change  their  location, 
say  from  home  to  the  office,  and  have  phone  calls  follow 
them.Videoconferencing  lets  users  find  colleagues  online 
and  convene  real-time  meetings.The  software  lets  users 
specify  who  can  see  them  online  and  who  can’t. 

Challenges 

One  of  the  biggest  challenges  to  adoption  has  been  cul¬ 
tural,  according  to  Aaron  Branham,  vice  president  of  glob¬ 
al  operations  and  networking  for  Monster.com. 

‘As  presence  follows  you  it  makes  you  available  or  visi¬ 
ble  wherever  you  are,”  he  says.“A  lot  of  people  stopped 
using  it  after  a  while.” 

It’s  part  of  a  security  challenge  called  presence  manage¬ 
ment. 

“Presence  has  to  tie  into  identity  management  to  cas¬ 
cade  the  information  to  applications  and  to  broker  and 
syndicate  presence  data  for  use  outside  the  organization,” 
Meta’s  Gotta  says. 

Another  hot  button  is  standards.Today  Session  Initiation 
Protocol  (SIP)  is  an  IETF-approved  standard  accepted  by 
Microsoft,  IBM,  Cisco  and  about  100  telephony  vendors 
for  its  flexibility  in  setting  up  sessions,  of  which  IM  is  just 
one  example.  But  debate  rages  over  Extensible  Messaging 
and  Presence  Protocol  (XMPP),  another  IETF  standard 
that  draws  support  from  many  open  source  advocates, 
and  SIP  for  Instant  Messaging  and  Presence  Leveraging 
Extensions  (SIMPLE),  which  is  working  its  way  through 
the  IETF  but  enjoys  the  same  backing  as  SIP 

“We  are  very  much  committed  to  supporting  SIP/ 
SIMPLE,  and  we  will  not  end  up  supporting  XMPP  na¬ 
tively  But  that  does  not  close  the  door  on  gateways, 
although  one  is  not  planned  nowfsays  Dennis  Karlinsky 
lead  product  manager  for  Microsoft’s  LCS. 

XMPP  backers,  including  Bell  South,  which  uses  it  within 
a  real-time  digital  call-center  application, say  the  XML- 
based  data-transport  protocol  is  more  flexible  and  ex¬ 
tensible,  and  supports  features  for  IM  and  presence  that 
SIMPLE  lacks, such  as  group  chat  and  contact  lists. 

“Presence,  message  routing,  authentication. The  fact  that 
XMPP  is  XML  means  you  can  put  in  [those  kinds  of] 
extensions,” says  Joe  Hildebrand,  chief  architect  for 
Jabber,  Inc. ,  who  predicts  real-time  platforms  will  become 
much  like  application  server  platforms  of  today 

The  challenge  to  that,  of  course,  is  user  acceptance, 
which  has  been  growing  steadily 

A  recent  Osterman  Research  study  shows  44%  of  com¬ 
panies  use  IM  with  business  applications,  up  from  21% 
just  three  years  ago.  Furthermore,  34%  of  users  have  stan¬ 
dardized  on  an  internally  run  IM  platform,  up  from  24% 
just  two  years  ago. 

Some  say  the  numbers  suggest  that  presence  is  well  on 
its  way  to  being  that  killer  app. 

“Just  like  in  the  late  ’90s  when  the  No.l  thing  on  IT 
agendas  was  to  Web-enable  applications,  I  think  the  story 
of  the  next  decade  will  be  adding  presence  to  applica¬ 
tions,”  says  Francis  deSouza,  president  of  IMLogic.“Every 
application  can  be  made  smarter  and  more  efficient  with 
presence.”  ■ 


APPL  CATIO 


HERE'S  HOW  TO  KNOW  WHEN 


YOU  REALLY  HAVE  IT. 


As  every  aspect  of  business  migrates  to  the  Web,  back¬ 
end  systems  once  sheltered  are  now  exposed.  Browser-based 
applications  pass  through  the  entire  security  perimeter, 
giving  users  unprecedented  access.  Little  wonder  that  the 
majority  of  attacks  today  target  the  application  directly. 

What  can  you  do?  How  will  you  know  the  right  solution 
when  you  see  it? 

When  it  can  recognize  two  common  hacker  techniques  that 
pass  straight  through  most  security  solutions.  In  the  first 
case,  hackers  enter  as  one  user,  then  tamper  with  the  Web 
page  to  change  their  identity  or  escalate  privileges.  In  the 
second,  they  change  or  bookmark  the  URL  of  a  Web  applica¬ 
tion  to  enter  restricted  areas.  Because  both  involve  properly 
formatted,  valid  looking  requests,  they  can  only  be  blocked 
by  a  solution  which  understands  the  application  context  in 
which  the  requests  are  made. 

When  it  knows  exactly  what  your  application's  traffic  should 
look  like,  and  blocks  everything  else.  The  ideal  protection 
would  be  based  on  the  application's  specific  logic,  not  generic 
traffic  patterns.  It  would  have  a  comprehensive  understanding 
of  how  the  user  interacts  with  the  application,  and  deny  all 
requests  not  known  to  be  legal. 


When  the  solution  doesn't  rely  on  attack  signatures 
or  other  patterns  of  abnormal  user  behavior.  Incorporating 
Intrusion  Prevention  Systems  (IPS)  into  traditional  firewalls  still 
leaves  systems  exposed  to  threats  cloaked  as  normal  traffic. 
Worse,  it  leaves  them  blind  to  dangerous  targeted  attacks  from 
legitimate  users  who  tamper  with  inputs  to  gain  access  to 
restricted  information. 

When  it  understands  the  application.  The  solution  must 
operate  at  the  application  layer,  not  the  network  layer.  It  must 
be  able  to  look  at  entire  requests-not  just  at  packets  on  the 
wire-to  tell  a  good  request  from  a  bad  one.  That  leaves  out 
network  security  products  such  as  firewalls  and  IPS. 

Traff icShield™  from  F5  is  an  Application  Firewall  that 
meets  these  standards  and  more.  There  is  no  solution  on  the 
market  that  solves  the  problem  as  completely,  as  flexibly,  or 
as  intelligently.  For  a  detailed  analysis  of  what  you  need  to 
provide  true  application  security,  visit  www.f5.com/pstnww 
for  our  white  paper,  "Application  Firewalls." 
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Treo  600 


VZEmail  with  Wireless  Sync  is  always  on  for 
automatic  email  delivery  and  instant  productivity. 

Only  Verizon  Wireless  has  VZEmair  with  Wireless  Sync,  so  your  employees  receive  their  email  automatically  on 
the  Treo™  600.  No  need  to  keep  checking  an  inbox,  because  Wireless  Sync  gives  the  Treo™  600  always  on  access 
to  email,  contacts,  calendar  updates  and  important  information.  Employees  can  also  make  calls  and  browse  the 
Web  for  increased  productivity  outside  the  office.  It’s  all  from  the  company  Wireless  Week  called  “Carrier  of  the 
Year.”  And  it’s  just  one  more  reason  that  for  all  your  company’s  wireless  needs,  we  mean  business. 

Contact  our  business  representatives  at  1.800.VZW.4BIZ  or  log  on  to  verizonwireless.com. 


Subject  to  Customer  Agreement,  service  plans  and  credit  approval.  Coverage  &  service  not  available  in  all  areas.  Must  be  within  National  Enhanced  Service  Rate  &  Coverage  Area  and  your  desktop  must 
be  on  and  in  a  condition  to  receive  email.  Wireless  Sync  is  powered  by  Intellisync.  palmOne,  Treo,  Palm  Powered  and  Palm  OS  are  among  the  trademarks  or  registered  trademarks  owned  by  or  licensed 
to  palmOne,  Inc.  All  other  brand  and  product  names  are  or  may  be  trademarks  of,  and  are  used  to  identify  products  or  services  of,  their  respective  owners.  ©2004  Verizon  Wireless 
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Infonet  VPN  service  to  exploit  the 

MPLS-based  offering  complements  VPN  service  based  on  Infonet’s  private  IP  net 


’Net 


Take  your  pick 

Infonet  soon  will  offer  three  different  IP  VPN  offerings. 


Name  of  service 

IPVPN  Secure 

IPVPN  Internet* 

IPVPN  Off-net 

Type  of  network 

Private  IP 

Infonet  Internet 

Open  Internet 

VPN  implementation 

MPLS/BGP 

MPLS/BGP 

IPSec/PKI 

QoS 

Excellent 

Very  high 

Unpredictable 

Security 

Very  high 

High 

Vulnerable 

SLAs 

End-to-end 

End-to-end 

None 

Reporting 

Web-based 

Web-based 

None 

Topology 

Any-to-any 

Any-to-any 

Point-to-point 

Classes  of  service 

5 

1 

None 

*New  service  to  be  announced  Sept.  9. 


■  BY  CAROLYN  DUFFY  MARSAN 

Infonet  Services  next  week  will  an¬ 
nounce  a  low-cost,  managed  VPN  service 
that  uses  the  popular  Multi-protocol  Label 
Switching  protocol  and  rides  over  the 
Internet. 

The  new  IP  VPN  Internet  service  comple¬ 
ments  Infonet’s  IP  VPN  Secure  service,  an 
MPLS-based  offering  carried  over  Infonet’s 
private  IP  network. 

Infonet  says  it  is  the  first  ISP  to  market 
with  MPLS  VPN  services  available  globally 
across  public  and  private  IP  networks. 

AT&T  in  May  announced  a  similar, 
Internet-based  IP  VPN  service  available  in 
the  U.S.  only 


■  AT&T  inked  a  $3  million  deal  with 
Vector  Security  last  week  for  a  22- 
site  network-based  IP  VPN.  AT&T  dis¬ 
places  MCI  as  the  primary  carrier  for 
the  Pittsburgh  company.  Vector  had  a 
frame  relay  WAN  but  now  has  opted 
for  an  IP  VPN  service  that  can  sup¬ 
port  VoIP.  Vector's  IP  VPN  will  let  the 
company  consolidate  its  voice,  video 
and  data  traffic,  but  the  company  is 
proceeding  cautiously.  It  will  begin 
testing  AT&T’s  VoIP  services  at  “a 
couple  of  locations"  in  the  next  30  to 
45  days  to  determine  if  it  is  a  viable 
alternative  to  traditional  voice  ser¬ 
vices.  AT &T  also  is  providing  long-dis¬ 
tance  and  toll-free  voice  services. 

■  The  French  government  will  sell  a 
9.6%  stake  in  France  Telecom,  tak¬ 
ing  its  holding  below  5%,  the  Ministry 
of  the  Economy,  Finance  and  Industry 
said  last  week.  Thanks  to  its  return  to 
financial  stability  since  the  end  of 
2002,  and  the  reintegration  of  its 
mobile  telephony  and  Internet  access 
subsidiaries,  the  Paris  telecom  com¬ 
pany  is  ready  to  go  it  alone,  the  min¬ 
istry  said  in  a  statement.  By  reducing 
its  stake,  the  government  says  it  will 
give  the  company  the  freedom  to  suc¬ 
ceed  in  a  competitive  market. 


Infonet’s  strategy  is  to  let  customers  take 
a  hybrid  approach  when  building  out  their 
converged  network  backbones. 

“We  believe  this  is  a  worldwide  first  to 
offer  an  Internet-based  MPLS  service  using 
Infonet-owned  and  -operated  Internet 
infrastructure,”  says  Jean-Noel  Moneton, 
vice  president  of  IP  Services  for  Infonet. 
“We  are  offering  our  customers  a  hybrid  of 
public  and  private  IP. . .  [for]  the  best  mix  of 
performance  and  price  point.” 

Infonet  says  it  has  signed  up  four  corpo¬ 
rate  customers  for  the  new  service,  includ¬ 
ing  Wartsila  Diesel,  a  Finnish  marine  diesel 
engine  manufacturer  that  uses  Infonet’s 
private  MPLS-based  VPN  services. 

“Wartsila  Diesel  is  a  fairly  large  customer 
of  our  IP  VPN  Secure  service"  says  Gary 
James, senior  product  manager  for  Internet 
Services  at  Infonet.  “They ’ve  been  leverag¬ 
ing  our  private  IP  network  throughout  the 
world,  but  they  had  a  number  of  sites  that 


■  BY  TIM  GREENE 

IPtimize  is  moving  beyond  its  data  ser¬ 
vices  roots  with  a  managed  VoIP  offering 
that  gives  small  businesses  a  choice  of 
using  IP  phones,  softphones  or  their  exist¬ 
ing  analog  handsets. 

Called  Voice  Pilot,  the  service  is  designed 
to  let  customers  start  on  a  small  scale 
before  committing  to  it, says  Jeff  Veres, COO 
of  IPtimize,  a  privately  funded  start-up 
whose  management  team  consists  of  tele¬ 
com  industry  veterans  from  carriers  such 
as  Cable  &  Wireless  and  Qwest. 

With  three  options  to  choose  from,  users 
of  lPtimize’s  new  service  can  turn  their  PCs 
into  phones  by  adding  software  and  head¬ 
sets,  use  Cisco  or  Polycom  IP  phones,  or 
hook  their  current  phones  into  the  IP  net¬ 
work  via  a  terminal  adapter.  The  company 
says  it  is  considering  other  IP  phone 
options  that  cost  less. 

Customers  with  broadband  Internet  con¬ 
nections  from  a  different  provider  can  buy 
the  new  service.The  IPtimize  voice  service 
would  be  supported  off  an  Ethernet  switch 
connected  to  a  WAN  router. 


couldn’t  justify  the  price  of  a  private  back¬ 
bone.  So  they’ve  extended  their  network  in 
Europe  using  IP  VPN  Internet.” 

Infonet  is  targeting  IP  VPN  Internet  at 


The  company  provides  a  call  attendant 
console  for  receiving  and  transferring  calls 
to  other  extensions.  The  equipment  sup¬ 
ports  three-  and  four-digit  dialing  and  other 
PBX  features  that  are  extendable  to  phones 
in  remote  offices. So  a  home-officer  worker 
with  broadband  could  connect  an  IP 
phone  and  become  another  extension  on 
the  business  phone  network,  Veres  says. 

IPtimize  is  making  its  initial  push  for  sales 
in  Denver,  where  it  is  based,  but  Veres  says 
the  company  will  expand  its  efforts  across 
the  country. 

Business  customers  pay  $50  per  month 
per  user  for  the  managed  service,  and  that 
comes  with  unlimited  local  and  long-dis¬ 
tance  calling  in  the  U.S. 

The  service  is  similar  to  IP  telephony 
offerings  from  Vonage  in  that  it  lets  cus¬ 
tomers  use  their  current  Internet  connec¬ 
tions  to  tie  into  the  voice  carrier’s  network. 
A  major  difference  is  that  IPtimize  resells 
its  service  from  wholesaler  New  Global 
Telecom.  That  means  if  there  is  trouble 
with  the  service,  New  Global  Telecom  will 
deal  with  it  even  though  the  customer  has 
signed  a  contract  with  IPtimize.  ■ 


multinationals  like  Wartsila  Diesel  with 
smaller  branch  offices  that  need  less- 
expensive  VPN  links.  Another  target  market 
is  companies  that  want  to  build  their  own 
IP  VPNs  but  don’t  want  the  hassle  and 
expense  of  managing  IPSec  tunnels  or  dig¬ 
ital  certificates  for  encrypting  traffic. 

“About  75%  of  IP  VPN  deployments  are 
what  we’d  categorize  as  roll-your-own 
implementations,  where  an  enterprise  buys 
IP  VPN  equipment  from  somebody  like 
Cisco  or  Nortel  and  Internet  access  from 
AT&T  or  some  other  ISP  and  uses  IPSec 
tunnels  for  encryption,”  says  David  Parks, 
senior  analyst  for  telecom  strategies  with 
The  Yankee  Group.  “This  is  a  huge  market 
opportunity  for  the  carriers  that  they 
haven’t  been  able  to  capture  yet.” 

Parks  estimates  that  the  North  American 
IP  VPN  market  will  top  $2.7  billion  this  year, 
and  increase  to  $9.5  billion  by  2008.  He 
expects  other  ISPs  to  join  Infonet  and  AT&T 
in  offering  MPLS-based  VPN  services  over 
the  Internet. 

“Infonet  has  a  little  bit  of  a  first-mover 
advantage,  along  with  AT&T’  Parks  says. 

Infonet  officials  estimate  that  companies 
will  save  about  30%  for  IP  VPN  Internet  ser¬ 
vices  when  compared  with  IP  VPN  Secure 
services. 

“Having  an  MPLS  backbone  over  the  pub¬ 
lic  Internet  allows  clients  to  have  the  secu¬ 
rity  of  a  private  network,  with  closed  user 
groups  and  addresses  that  are  not  adver¬ 
tised  out  to  the  Internet.  But  they  can  still 
leverage  the  price  points  of  the  Internet,” 
James  says.  “Customers  can  choose  what 
service  they  want  on  a  site-by-site  basis.” 

Customers  with  performance-sensitive 
See  Infonet,  page  34 


Start-up  offers  VoIP 
users  pick  of  phones 


Want  to  simplify  your  data  center  and  make  it  more  cost  effective?  Try  the  IBM  eServer  BladeCenter  HS20  system 
with  powerful  Intel®  Xeon™  processors.  Why?  It’s  from  the  #1  blade  server  vendor,  IBM.1  And  designed  to  integrate  the 
functions  you  need  with  brilliant  simplicity.  Server,  network  and  storage  resources  are  rigorously  tested  to  enable  seam¬ 
less  integration.  So  BladeCenter  HS20  systems  are  easy  to  manage  the  day  they  arrive  and  can  help  lower  TCO.  For 
more  information  about  the  most  in-demand  blade  servers  for  the  on  demand  world,  visit  ibm.com/eserver/advantage 


5  reasons  more  and  more  businesses  are  turning  to  IBM  eServer"  BladeCenter ™  systems  with  Intel  Xeon  processors. 


Scale  out  simply 

IBM  Director  systems 

Up  to  83%  fewer  cables 

Mainframe-inspired 

24/7/365  optional  onsite 

on  demand. 

management. 

than  stand-alone  servers. 

technologies. 

hardware  support / 

@  server 


The  IBM  eServer  BladeCenter  HS20  system 
with  Intel  Xeon  processors  isn’t  just  powerful 
and  scalable;  it’s  surprisingly  simple. 


'Based  on  FY2003  worldwide  blade  server  revenue  and  shipments.  IDC’s  Worldwide  Quarterly  Server  Tracker.  February  2004.  'Additional  charges  apply.  Standard  support  includes  next-business-day  response  in 
some  countries.  IBM.  the  e-business  logo,  eServer,  the  eServer  logo  and  BladeCenter  are  trademarks  or  registered  trademarks  of  International  Business  Machines  Corporation  in  the  United  States  and/or  other 
countries.  Intel,  Intel  Inside,  the  Intel  Inside  logo  and  Intel  Xeon  are  trademarks  or  registered  trademarks  of  Intel  Corporation  or  its  subsidiaries  in  the  United  States  and  other  countries.  Other  company,  product  and 
service  names  may  be  trademarks  or  service  marks  of  others.  ©2004  IBM  Corporation.  All  rights  reserved. 
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Service  Providers 


Get  your  FREE  book  and  learn  how  your 
company  can  manage  the  startling  growth 
in  email  volume — and  withstand  the 
massive  flood  of  spam,  viruses  and  fraud  that 
threaten  your  email  communication  system. 

To  order  your  free  copy  of 
GET  THE  MESSAGE: 

A  Business  Guide  to 
Surviving  the  Email  Security  Crisis, 
visit  www.ironport.com/book 
or  call  toll  free  866.882.8658 

(T)  IRQNPORT 

Rebuilding  the  World’s  Email  Infrastructure. 


NetworkWorld 


EYE  ON  THE 
CARRIERS 

Johna  Till 
Johnson 


9/6/04 


Distribution 
online:  Dawn  of 
a  new  era 

Every  now  and  then  you  get  a  glimmer 
of  good  news.  Todays  is  regarding 
online  information  distribution:  I’m 
seeing  the  first  signs  that  the  music  indus¬ 
try  is  finally  getting  its  collective  head 
around  the  idea  that  new  technologies 
require  new  business  models. 

Some  history:  Readers  of  this  column  will 
recall  that  1  strongly  oppose  the  Recording 
Industry  Association  of  America’s  (RIAA) 
misguided  efforts  to  protect  copyrights  by 
forcing  telcos  to  divulge  the  identity  of 
music  downloaders.  In  the  year  since  my 
first  column  on  the  topic,  the  RIAA  has 
won  some  high-profile  legal  battles  against 
music  downloaders  —  yet  music  down¬ 
loads  have  reach  an  all-time  high. 

To  avoid  the  inevitable  flame-mail,  let  me 
be  clear.  I  support  the  right  to  intellectual 
property  protection.  I  have  to.  As  a  coder,  an 
analyst  and  someone  whose  friends 
include  programmers,  artists  and  musi¬ 
cians,  I’d  have  no  income  and  no  social  life 
in  a  world  without  intellectual  property 
protection. 

What  I  don’t  support  is  giant  corporations 
using  tedious,  expensive  legal  battles  in  an 
ultimately  futile  attempt  to  hold  back  the 
spread  of  technology  that  can,  in  the  long 
run,  add  great  value  to  them  and  to  their 
customers  (that  also  explains  my  distaste 
for  the  RBOCs,  but  that’s  another  column). 
In  short:  Suing  your  customers  is  stupid. 


Infonet 

continued  from  page  31 

applications  such  as  voice  or  video  over  IP 
are  likely  to  stick  with  Infonet’s  IP  VPN 
Secure  and  its  five  classes  of  service,  com¬ 
pany  officials  say 

“The  Internet  backbone  doesn’t  support 
class  of  service,”  James  says.  “With  the 
secure  network,  we  can  guarantee  specific 
latency,  packet  loss  and  availability  by 
application.” 

However,  companies  with  locations  that 
require  e-mail,  file  transfer  and  Web  brows¬ 
ing  could  take  advantage  of  the  new  IP 
VPN  Internet  service  with  its  single  class  of 
service. 

Infonet  officials  say  IP  VPN  Internet  offers 
several  advantages  over  do-it-yourself  VPNs 
including  the  inherent  security  of  MPLS,  a 
fully  meshed  architecture  and  the  elimina¬ 
tion  of  IPSec  tunnels. 

“With  an  MPLS  VPN,  clients  are  separat- 


Suing  your  customers  when  the  technol¬ 
ogy  exists  to  offer  them  enhanced  services 
is  beyond  stupid  —  it’s  brain-dead. 

So  what’s  the  good  news?  First,  that  music 
companies  finally  are  getting  the  message 
that  today’s  content-delivery  systems  aren’t 
working.  Advertiser-supported  content  is 
slowly  but  surely  losing  ground  to  pay-to- 
listen  delivery  models.  Clear  Channel 
Communications,  the  No.  1  radio  station 
owner  in  the  U.S.,  recently  announced  that 
it’s  reducing  the  amount  of  advertising  per 
hour  on  its  stations  (from  approximately  24 
minutes  to  approximately  12). 

That’s  because  nobody’s  listening  any 
more.  A  Canadian  study  found  a  drop  of 
25%  in  radio-listening  time  by  Canadian 
teens  (said  one, “[On  the  radio]  there  are 
too  many  commercials  . . .  with  the  com¬ 
puter,  you  can  download  whatever  you 
want,  and  you  don’t  have  to  listen  to  what 
you  don’t  want.”). 

Duh.  Has  anyone  noticed  that  sub¬ 
scribers  to  satellite  radio  stations  (XM  and 
Sirius)  have  doubled  since  the  start  of  the 
year?  XM  now  claims  more  than  2  million 
subscribers,  and  Sirius  has  more  than 
500,000  —  watch  for  those  numbers  to 
grow. 

And  more  to  the  point,  online  music  ser¬ 
vices  have  taken  off.  Microsoft  is  said  to  be 
planning  an  online  music  service  to  com¬ 
pete  with  Apple’s  iTunes  as  early  as  this 
month.  Music  industry  experts  predict  that 
as  much  as  one-third  of  all  music  will  be 
delivered  via  the  ’Net  in  a  few  years,  and 
already  are  pronouncing  the  death  of  CDs. 

Bottom  line:  The  inevitable  will  happen. 
All  the  lawsuits  in  the  world  can’t  save  the 
RIAA  from  online  distribution  models. With 
a  little  bit  of  luck,  other  information-distrib¬ 
ution  industries  will  follow  suit  —  creating 
a  world  in  which  content  creators,  con¬ 
sumers  and  distributors  all  win. 

Johnson  is  president  and  chief  research 
officer  at  Nemertes  Research,  an  indepen¬ 
dent  technology  research  firm.  She  can  be 
reached  at  johna@BJertes.com. 


ed  from  the  public  Internet  so  they’re  not 
subject  to  denial-of-service  attacks  or 
hacking,”  James  says.  “On  top  of  that,  we 
offer  a  security  suite.  .  .  .  Customers  can 
choose  from  network-  or  premises-based 
firewalls  and  encryption  on  top  of  fire¬ 
walls.” 

Infonet’s  new  IP  VPN  Internet  is  available 
in  all  57  countries  where  Infonet  offers  IP 
VPN  Secure  services.  The  new  offering  is 
available  at  speeds  up  to  155M  bit/sec. 
Infonet’s  IP  VPN  Internet  integrates  with  its 
IP  VPN  Secure  and  IP  VPN  Off-net  services. 

The  cost  of  Infonet’s  IP  VPN  Internet  ser¬ 
vice  depends  on  the  number  and  location 
of  sites  and  the  amount  of  bandwidth  that 
a  company  requires.  Pricing  for  a  15-site  IP 
VPN  Internet  network  —  with  eight  sites 
in  Western  Europe,  four  sites  in  the  U.S., 
one  in  Mexico,  one  in  Canada  and  one  in 
Asia  —  with  all  sites  having  T-l  speeds  is 
slightly  over  $15,000  (or  an  average  of 
$1,000  per  site)  per  month.  ■ 
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Strategy  &  Management  for  Messaging  &  Spam  is  a  sophisticated  new  Network  World  Event 
event  that’s  as  innovative  and  aggressive  as  the  spammers  themselves.  It  treats  content  manage¬ 
ment  as  a  professional  discipline.  Helping  to  solve  the  symptoms  of  spam  by  taking  you  inside  the 
world  of  messaging  for  a  dose  of  preventative  medicine  driven  by  proven  management  principles. 
You’ll  take  proactive  control  of  unwanted  content.  You’ll  develop  enterprisewide  best  practices. 
And  bring  professional  order  to  content  chaos.  Attendance  at  this  high-demand  event  is  free, 
but  space  is  limited,  and  requests  are  certain  be  as  numerous  as  the  spam  clogging  your  inbox. 

So  act  now  and  don’t  miss  out! 
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SYSTEMS 


©  MailFrontier  SOPHOS 

Email  is  good  again” 


Akonix  is  the  leading  provider  of 
enterprise-class  business  solutions  for 
leveraging  the  power  of  multi-network 
enterprise  IM.  Akooix’s  award  winning 
products  leverage' innovative  technology 
and  certified  strategic  partnerships  to 
deliver  security,  control,  integration, 
and  compliance  capabilities  across 
major  IM  systems. 


IronPort  is  rebuilding  the  world’s  email 
infrastructure  by  driving  new  standards 
and  providing  innovative  products  for 
those  faced  with  the  monumental  task 
of  managing,  protecting,  and  growing 
mission-critical  email  systems.  For  more 
information  on  how  IronPort  fixes  email, 
please  visit:  www.ironport.com 


MailFrontier  is  a  leading  provider  of 
email  security  solutions  that  stop 
unwanted  email  by  protecting  enterprises 
from  the  growing  number  of  dangerous 
and  costly  email  threats  including  spam, 
viruses,  phishing,  blended  threats  and 
other  attacks,  such  as  directory  harvest 
attacks. 


Sophos  is  a  world  leading  provider  of 
anti-spam  and  anti-virus  software,  pro¬ 
tecting  over  25  million  users  worldwide 
against  spam,  viruses  and  other  email 
borne  threats.  Founded  in  1985  with 
more  than  800  employees,  Sophos  is 
privately-held  with  offices  worldwide. 
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To  join  sponsors  of  this  premier  Network  World  Event,  please  contact  Andrea  D'Amato  at  1  -508-490-6520  or  adamato@nww.com  for  free,  no-obligation  information. 
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Ail  i:iin’v  reserved  Trend  Micro,  the  t-b*ll  logo  and  Network  VirusWall  are  trademarks  or  registered  trademarks  of  Trend  Micro  Incorporated, 
•'duct  names  may  be  trademarks  or  registered  trademarks  of  their  owners 


Introducing  the  industry's  first  outbreak 
prevention  appliance —  only  from  Trend  Micro. 

Deadly  viruses  and  worms  are  now  attacking  at  the  transport  level.  Combat  these  evolving 
threats  with  Trend  Micro™  Network  VirusWall™ —  the  first  and  only  appliance  designed  to 
prevent  outbreaks  at  the  network  layer.  Detect,  quarantine,  and  eliminate  threats  as  they  occur. 
Assisted  by  our  award-winning  Enterprise  Protection  Strategy  and  security  experts,  you'll 
quickly  contain  viruses  and  worms  and  maintain  productivity.  Mission  accomplished. 


April  22,  2003 
Trend  Micro 

Enterprise  Protection  Strategy 
Trend  Micro.  Inc. 


For  details  or  a  free  white  paper,  call  1.888. 58. TREND 
or  go  to  www.trendmicro.com/products/nvw 


|  www.nwfusion 
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■  AN  INSIDE  LOOK  AT  THE 
TECHNOLOGIES  AND  STANDARDS 
SHAPING  YOUR  NETWORK 


1 0GBase-T  brings  blazing  speed 


HOW  IT  WORKS 


10GBase-T 


Also  known  as  802.3an,  the  proposed  standard  supports 
10G  bit/sec  Ethernet  over  unshielded  twisted-pair 
wiring. 


Transmitter 

o  © 


1“  100Base-T 

MAC  XGMII  phy 

layer 
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Channel 


Receiver 


10GBase-T  V„MII 
PHY  XGMII 
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10G 

MAC 

layer 


10G  switch 


10G  switch 


O  The  existing  802.3 10G  media  access  control  (MAG)  layer  and  Gigabit  Media  Independent 
Interface  (XGMII)  developed  for  10G  over  fiber  are  used  to  deliver  packets  to  the  Physical 
Layer  entity  (PHY). 

©  The  lOGBase-T  PHY  encodes  data  to  be  sent  over  the  four  twisted  pairs  of  the  cable. 

©  The  channel  includes  the  connectors,  cable  and  patch  cords  connecting  the  two  switches. 
O  The  receiver  equalizes  and  decodes  the  signal  into  data. 

©  The  MAC  receives  the  data  from  the  PHY  to  be  processed  as  received  packets. 


■  BY  JAN  ALEXANDER  AND  TOM  DEBIEC 

As  the  density  of  devices  in  enterprise 
networks  and  data  centers  increases,  there 
is  an  emerging  need  for  low-cost,  10G  bit/ 
sec  Ethernet  over  twisted-pair  cabling.  A 
lOGBase-T  standard  in  the  works  will  sup¬ 
port  10G  Ethernet  over  new  wiring  at  dis¬ 
tances  of  up  to  330  feet  and  existing  wiring 
at  distances  of  up  to  182  feet. 

An  IEEE  task  force  first  met  in  March  to 
begin  hammering  out  the  new  lOGBase-T, 
or  802.3an,standard.The  first  draft  is  sched¬ 
uled  to  be  ready  this  year,  and  the  group 
expects  to  finalize  the  standard  in  2006. 

To  run  multi-gigabit  data  rates  on  four- 
pair  copper  cabling,  sophisticated  digital 
signal  processing  is  used  to  eliminate  the 
effects  of  cross-talk  between  pairs  of  cable 
and  to  remove  the  effects  of  signal  reflec¬ 
tions.  But  it’s  difficult  to  eliminate  noise  that 
is  external  to  the  cable,  such  as  electro¬ 
magnetic  interference  from  outside 
sources  or  adjacent  cables.  Cable-to-cable 
noise,  or  alien  cross-talk,  prevents  wiring 
from  reliably  operating  under  worst-case 
330-foot  conditions. 

To  address  this  problem,  a  Telecommuni¬ 
cations  Industry  Association  (T1A)  subcom¬ 
mittee  for  cabling  specifications  is  working 


Got  great  ideas 


■  Network  World  is  looking  for  great 
ideas  for  future  Tech  Updates.  If  you 
want  to  contribute  a  primer  on  a  spe¬ 
cific  technology,  standard  or  protocol, 
contact  Amy  Schurr,  senior  managing 
editor,  features  (aschurr@nww.com). 


to  provide  additional  requirements  for 
cabling  installations  up  to  182  feet. 

To  support  distances  of  330  feet,  as 
required  in  the  U.S.  market, substantial  aug¬ 
mentation  to  the  existing  cabling  specifica¬ 
tions  are  required.This  will  result  in  a  sepa¬ 
rate  cabling  system  designed  for  lOGBase- 
T.TheTIA  cabling  subcommittee  currently 
is  addressing  this  task. 

The  subcommittee  must  develop  a  new 
Physical  Layer  entity  (PHY),  which  inter¬ 


faces  with  the  existing  10G  media  access 
control  and  Gigabit  Media  Independent 
Interface  in  the  IEEE  model. The  PHY  con¬ 
tains  the  functions  that  transmit,  receive 
and  manage  encoded  signals  that  are 
recovered  from  cabling  systems. 

The  PHY  will  be  based  on  pulse  ampli¬ 
tude  modulation  (PAM).  Using  PAM,  infor¬ 
mation  is  encoded  by  a  stream  of  pulses 
with  discrete  amplitudes.  This  is  the  same 
modulation  technique  currently  used  in 


100Base-T  and  lOOOBase-T,  but  the  symbol 
rates  and  digital  signal  processing  tech¬ 
niques  will  be  enhanced. 

The  question  is,  what  type  of  PAM  encod¬ 
ing  will  be  used?  There  are  two  proposals 
on  the  table,  PAM  12  and  PAM8.  PAM  12 
operates  at  825M  symbols  per  second.  It 
has  the  advantage  of  using  lower  baud  rate 
than  PAM8,  which  operates  at  1000M  sym¬ 
bols  per  second.  Presentation  materials 
show  that  PAM8  might  be  able  to  tolerate 
20%  more  noise  than  PAM  12.  Because 
PAM8  separates  sampled  signal  values  into 
only  eight  distinct  voltage  levels,  the  differ¬ 
ence  between  each  level  is  greater  than  it 
would  be  for  PAM  12,  which  makes  it  easier 
to  determine  the  level  of  each  sample. 

Also  being  considered  is  a  technique 
known  asTomlinson-Harashima  Precoding 
(THP),  which  takes  the  known  signal  val¬ 
ues  and  equalizes  them  before  transmis¬ 
sion,  rather  than  best-detected  values.  Low- 
density  parity  check,  a  common  coding 
approach  that  decreases  the  signal-to-noise 
ratio  needed  to  achieve  a  required  bit  error 
rate,  works  well  with  THP  to  reduce  the 
amount  of  required  transmit  power. 

There  are  many  building  blocks  that 
make  up  the  lOGBase-T  system  architec- 
ture.The  IEEE  task  group  has  made  a  great 
deal  of  progress  toward  its  goals  and  is 
continuing  to  flesh  out  technical  proposals 
that  will  make  lOGBase-T  a  reality  by  the 
summer  of  2006. 

Alexander  is  a  senior  project  engineer  for 
Nexans,  and  Debiec  is  a  technical  marketing 
specialist  for  Berk-Tek,  a  Nexans  company. 
They  can  be  reached  at  jan.alexander@ 
nexans.com  and  tom.debiec@nexans.com, 
respectively. 


Dr.  Internet  By  Steve  Blass 

We  tried  the  FormMail  modifications  you  sug¬ 
gested  last  week  (www.nwfusion.com,  DocFinder: 
3528),  and  the  data  file  was  saved  but  the 
comma  separated  value  format  didn't  work.  The 
data  file  contains  copies  of  the  FormMail  e-mails 
rather  than  a  simple  table  containing  the  values. 
How  do  we  fix  it? 

The  instructions  I  provided  create  a  text  file  con¬ 
taining  copies  of  the  FormMail  messages  with  a 


CSV  extension  rather  than  a  comma  separated 
value  table.  To  extract  and  save  only  the  submitted 
form  field  values  to  such  a  table  requires  parsing 
the  name/value  pairs  out  of  the  e-mail  body  and 
writing  the  table.  The  easy  fix  is  to  modify  the 
stock  FormMail.pl  script  to  add  a  subroutine  that 
uses  the  standard  Perl  CGI  module  for  parameter 
parsing  and  writes  comma  separated  data  values 
to  the  file.  To  use  the  CGI  module,  include  the  line: 
use  CGI: 


To  write  an  actual  CSV  string  to  the  CSV  file,  use 
a  statement  such  as:  foreach  $p  (CGI:: 
paramQ)  {  print  CSV  “$p,"; }  Depending  on  your 
original  form,  you  might  need  to  perform  some 
validation  to  ensure  that  each  line  contains  values 
from  the  proper  field  in  each  column. 

Blass  is  a  network  architect  at  Change@Work  in 
Houston.  He  can  be  reached  at  dr.internet@ 
changeatwork.  com. 
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We  were  recently  driven  to  drink  try¬ 
ing  to  get  an  application  to  talk  XML 
to  the  embedded  Web  server  in 
HomeSeer,  the  home  automation  applica¬ 
tion  we  discussed  some  weeks  ago. 

The  application,  written  using  Xcelsius 
from  Infommersion.was  supposed  to  send 
an  XML  datastream  to  HomeSeer  server  via 
a  POST  request.  The  payload  of  an  HTTP 
POST  request  follows  the  header  and  looks 
something  like  this: 

POST  /test.asp  HTTP/1.1 
Host:  www.somehost.com 
User-Agent:  Mozilla/4.0 
Content-Length:  27 

Content-Type:  application/x-www-form- 
urlencoded 

userid=bob&password=fish 
The  payload  is  everything  that  comes 
after  the  “Content-Type”  line. The  format  of 
the  POST  payload  should  be  one  or  more 
“variable=value”  pairs  separated  by  amper¬ 
sands. 


Driven  to  drink  by  code  and  coding 


Using  Active  Server  Pages  (ASP)  code,  the 
browsers  POST  request  is  stored  in  a  data 
structure  called  the  “Form  collection.”  But 
with  HomeSeer  there’s  a  limited  number  of 
access  methods  to  get  to  this  data,  so  we 
used  the  following: 

mydata  =  Request.Form(l) 

From  the  POST  request  detailed  above, 
this  code  would  set  mydata  equal  to  “bob” 
(quotes  not  included).  So,  here’s  an  XML 
datastream  that  we’ll  send  to  a  Web  server: 
<data> 

<variable  name=”Some  Stuff”> 

<row> 

<column>A  A  A</column> 

<column>B  B  B</column> 

</row> 

<row> 

<column>D</column> 

<column>E</column> 

</row> 

</variable> 

</data> 

This  is  the  format  of  a  two-column,  two- 
row  table  encoded  in  XML.  When  the  data 
is  accessed  through  the  Form  collection 
using  the  ASP  code  above,  the  contents  of 
mydata  will  be: 

“SomeStuff”xrowxcolumn>AAA</col- 

umnxcolumn>BBB</column> 

<column>CCC</columnx/rowxrowxc 


olumn>D</columnxcolumn> 

E</columnxcolumn>F</coIumnx/row 

x/variablex/data> 

What  happens  is  the  built-in  parsing  of 
POST  requests  by  the  Web  server  assumes 
the  character  string  “<dataxvariablename” 
is  the  name  of  the  variable  (demarcated  by 
the  “=”  that  gets  thrown  away)  and  that 
everything  else  following  is  the  value  of 
that  field. 

But  the  XML  variable  name  was  “Some 
Stuff”  not  “SomeStuff”:  The  white  space  is 
AWOL.  And  not  only  the  white  space  be 
tween  the  XML  tags  disappeared  but  also 
the  white  space  in  the  tag’s  data. 

This  happened  because  it  is  the  responsi¬ 
bility  of  the  sender  to  “URL  encode"  all 
characters  per  RFC  1738,  the  “Uniform 
Resource  Locators  (URL)”  specification, 
before  sending  them  to  the  server  and 
here,  the  white  space  isn’t  encoded! 

In  the  case  of  un-encoded  white  space, 
the  Web  server  simply  ignores  it.  If  other  un¬ 
encoded  characters  such  as  ampersands 
and  equals  signs  are  present,  they  will 
cause  the  server  to  make  further  assump¬ 
tions  and  complicate  matters  even  more. 

As  it  turns  out,  that  was  our  problem. 
Consider  the  following: 

$&+,/:;=?@  “‘o#%{}l\A~' 

If  this  was  URL  encoded  to  RFC  1738,  the 


character  sequence  sent  to  the  server 
should  be: 

%24&%2B%2C/:;=?@%20%22’%3C%3E#% 

25%7B%7D%7C%5C%5E%7E%60 

Xcelsius  generated  the  following: 

$&amp;+,/:;=?@  &quot;&apos;&lt;&gt;#% 
{}I\A~ 

This  is  not  URL  encoding,  but  HTML 
encoding.  And  the  result  of  the  application 
POSTing  XML  data  without  converting  it  to 
the  URL  encoded  format  that  the  Web  serv¬ 
er  expected  cost  us  about  6  hours  before 
we  figured  out  what  was  going  on.  It  turns 
out  that  the  cause  was  not  actually 
Xcelsius.  It  was  Macromedia’s  implementa¬ 
tion  of  XML  POSTing  in  Flash’s  Actionscript 
language.  The  Xcelsius  engine  is  written  in 
Actionscript  so  it  inherits  the  snafu. 

We  found  out  subsequently  that  Colin 
Moock’s  book  on  Flash’s  underlying  lan¬ 
guage,  Actionscript:  The  Definitive  Guide, 
says:  “The  server  application  receiving  the 
posted  XML  string  must  be  able  to  access 
the  raw  POST  data  of  the  HTTP  request 
directly  and  should  not  attempt  to  parse  it 
as  normal  name/value  pairs. ...  In  ASP  raw 
POST  data  may  be  accessed  via  the 
Request.BinaryRead  method. . . .” 

We  needed  a  stiff  drink.  What  can  we  pour 
for  you  at  gearhead@gibbs.com? 


Quick  takes 
on  high-tech  toys 

By  Keith  Shaw 


Apple  iMac  G5  merges  computer  and  display 

Apple  last  week  launched  the  iMac  G5,  a  thin  desktop 
computer  that  integrates  everything  into  a  flat-panel  dis¬ 
play  The  iMac  G5  includes  a  G5  processor  (with  speeds  up 
to  1.8  GHz),  and  will  come  with  either  a  17-  or  20-inch 
active  matrix  widescreen  LCD.  Prices  for  the 
computer  start  at  about  $1,300. 

The  entire  computer,  from  the  power 
supply  to  the  slot-load  optical  drive,  is 
built  into  the  display  which  measures 
2  inches  thick.  All  the  ports  are  on  the 
rear  right  side  (including  five  USB 
ports  and  two  FireWire  400  ports), 
and  include  optional  AirPort 
Extreme  (802.1  lg)  and  Bluetooth 
wireless  modules  for  connectivity 
The  17-inch  version  comes  with  a 
1 ,8-GHz  PowerPC  G5  processor  and 
a  SuperDrive  for  DVD  burning,  or  a 
1.6-GHz  G5  processor  and  a  CD/ 

DVD  combination  drive.  The  20- 
inch  model  also  has  the  1.8-GHz 


The  2-tfich-thick  iMac  G5  holds 
everything  from  the  power 
supply  to  the  slot- 
load  optica!  drive.  — __  - 


processor  and  SuperDrive.  Other  features  of  the 
desktops  include  double-date-rate  memory 
expandable  to  2G  bytes,  an  AGP  8X  graphics 
card  and  hard  drive  space  of  up  to  250G  bytes. 

Apple  will  bundle  its  suite  of  digital  lifestyle 
applications,  called  iLife  ’04,  which  includes 
iTunes,iPhoto,iMovie,iDVD  and  GarageBand. 

The  company  says  the  iMac  G5  will  start  shipping 
worldwide  in  the  next  few  weeks  and  will  be  available 
from  Apple  retail  stores,  re-sellers  and  its  online  Apple 
Store. 

Logitech  shrinks  a  Webcam 

Logitech  has  launched  a  new  Webcam,  the  QuickCam 
Communicate.The  $50  device  is  scheduled  to  be 
available  later  this  month  in  the  U.S. 

The  QuickCam 

Communicate  comes 
with  a  flat-panel  clip  that 
is  flexible  for  connecting 
to  flat-panel  monitors  and 
notebook  computers.  It 
also  has  a  blue  light  that 
glows  when  it’s  in  use  and 
an  integrated  microphone 
for  recording  audio-to- 
video  clips.  The  Webcam 
works  with  several  video 
applications,  including 
MSN  Messenger, AOL  Instant 
Messenger  and  Yahoo 
Instant  Messenger.  It  comes 
with  a  trial  version  of 
Logitech’s  VideoCall  for 
broadband,  which  synchro¬ 
nizes  voice  chat  and  video 
over  a  broadband  Internet 
connection. 


Wi-Fi  is  now  stan¬ 
dard  on  the 

Roku  offers  free  Wi-Fi  for  SoundBridge  net- 
SoundBridge  player  work  media  players. 

Roku  has  announced  it  will  offer 
a  free  Wi-Fi  connection  as  part  of  its  SoundBridge  network 
music  player.  Wi-Fi  connectivity  formerly  cost  an  extra  $50. 

The  device  streams  digital  music  and  Internet  radio 
from  any  computer  to  powered  speakers  or  a  stereo  sys¬ 
tem.  It  has  a  vacuum  fluorescent  display,  and  a  remote 
control  that  lets  a  user  change  a  song  or  make  other 
choices  without  touching  the  device  or  his  computer. The 
SoundBridge  comes  in  two  models,  the  M2000  (17  by 
2.75  inches, for  $500)  or  the  M1000  (10by2.37  inches, for 
$250).  It  can  play  digital  music  in  many  formats, including 
Apple’s  AAC  format,  which  it  uses  in  its  iTunes  software. 
This  means  users  who  have  iTunes  can  add  SoundBridge 
to  their  home  networks  and  play  songs,  including  those 
on  the  iTunes  playlists,  without  installing  extra  software. 
But  songs  purchased  from  the  Apple  Music  Store,  which 
are  encrypted,  cannot  be  played  on  the  SoundBridge,  the 
company  says. 

Users  who  bought  SoundBridge  before  the  announce¬ 
ment  can  receive  a  Roku-tested  Wi-Fi  card,  take  $100  off  the 
purchase  of  another  SoundBridge  or  the  HD  1000  high-def¬ 
inition  media  player,  or  get  a  $50  refund. 

For  more  information,  go  to  www.rokulabs.com. 

Shaw  can  be  reached  at  kshaw@nww.com. 


Millions  of  your  peers  are  turning  to  the  Security  Guidance  Center  for  the  latest  in  security.  By  visiting  regularly, 
they  get  the  tools,  guidance,  and  training  needed  for  better  protection  against  viruses  and  other  security  threats. 
Visit  microsoft.com/security/IT  today  and  see  for  yourself  the  newest  additions,  including: 


Are  you? 


Microsoft®  Windows®XP  Service  Pack  2  with  Advanced  Security  Technologies  Download  it  for  free 
and  evaluate  the  latest  updates  for  increased  system  control  and  proactive  protection  against  security  threats. 


Free  Online  Self  Assessment  Complete  this  free,  Web-based  self-assessment  test  to  help 
you  evaluate  your  organization's  security  practices,  and  identify  areas  for  improvement. 


Free  Updates  and  E-mail  Alerts  Stay  on  top  of  the  latest  security  issues  quickly  and 
easily  by  signing  up  for  free  Microsoft  Security  Communications. 


Free  Security  Tools  React  more  effectively  to  potential  security  threats.  Take  advantage  of 

free  tools  and  technologies  like  the  Microsoft  Baseline  Security  Analyzer  and  Software  Update  Services. 


Go  today  to  microsoft.com/security/IT 


Microsoft  • 


©  2004  Microsoft  Corporation,  All  rights  reserved.  Microsoft  and  Windows  are  either  registered  trademarks  or  trademarks  of 
Microsoft  Corporation  in  the  United  States  and/or  other  countries. 
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ON  TECHNOLOGY 

John  Dix 

Next up  at 
Nortel:  The 

new  GEO 


Soon  after  we  met  with  Nortel  President  and  CEO 
Frank  Dunn  last  February,  he  and  a  number  of  his 
lieutenants  were  fired  for  accounting  shenanigans. 
The  background  of  his  replacement,  Bill  Owens, should 
help  calm  any  jittery  shareholders:  He  was  once  vice  chair¬ 
man  of  the  Joint  Chiefs  of  Staff,  the  second-highest  rank  in 
the  military 

He  isn't,  however,  nearly  as  steeped  in  networking  as 
Dunn,  who  worked  in  virtually  every  group  in  Nortel  over  a 
span  of  28  years.  Owens’  most  recent  network  experience 
was  as  CEO  of  Teledesic,  a  satellite  broadband  service 
company  that  dried  up  after  the  2001  terrorist  attacks 
drove  up  the  cost  of  insuring  satellites. 

But  Owens’  pedigree  is  probably  appropriate  for  the  cur¬ 
rent  business  challenges.  The  market  is  changing  fast,  with 
aggressive  low-cost  challengers  emerging  from  Asia  and 
industry  consolidation  on  the  horizon. 

One  of  his  first  moves  was  to  reorganize  the  company 
into  two  groups,  one  facing  carriers  (instead  of  individual 
wireless,  wireline,  optical  and  other  divisions)  and  one  fac¬ 
ing  the  enterprise. 

For  now  he  is  spending  the  bulk  of  his  time  with  carrier 
customers  because  he  believes  the  market  opportunities 
are  greatest  there  and  because  he  can  reach  through  them 
to  touch  enterprise  customers. 

The  enterprise  “has  not  been  the  DNA  of  Nortel,”  Owens 
admits.  But  he  says  the  future  is  about  bundling  and  the 
company’s  broad  product  portfolio  and  history  of  innova¬ 
tion  will  let  it  compete  effectively  “We  have  the  most 
diverse  range  of  products  in  the  industry  and  put  more 
into  R&D  on  a  dollar  of  sales  basis  than  any  company’ 

The  primary'  opportunities  Owens  sees  are  around  secur¬ 
ity  and  shifting  to  more  of  a  services  business,  a  la  IBM. 
Regarding  the  latter,  Owens  says  Nortel  will  offer  services  to 
help  carriers  and  enterprises  “deal  with  the  operation  of 
networks  that  are  more  and  more  complex.” 

He  also  expects  to  see  industry  consolidation  over  the 
next  two  to  three  years  and  says  Nortel  will  be  a  consol¬ 
idator,  not  a  consolidatee.“For  that  we  need  cash,  lower 
costs  and  revenue,”  he  says.“We  have  our  treasurer 
focused  on  cash.” 

Likely  consolidation  scenarios? “Everyone  is  talking  to 
everyone,”  Owens  says.“Chambers  has  made  comments 
about  us,  but  consolidation  won’t  necessarily  happen 
along  the  lines  you  might  think.They  might  involve  the 
opportunities  I’ve  talked  about  in  security  and  services.” 

Getting  Owens  out  and  about  is  an  important  first  step  in 
healing  Nortel. The  company  badly  needs  to  show  cus¬ 
tomers  it  is  focused  and  moving  toward  a  goal.  Whether 
Owens’  goals  are  optimal  remains  to  be  seen. 

—  John  Dix 
Editor  in  chief 
jdix@nww.com 


www.nwfusion.com 


Hats  off 

Regarding  “Hack  .  .  .  hack  back  .  .  .  repeat”  (www. 
nwfusion.com,  DocFinder:  3523):  Say  you  go  home 
to  find  someone  has  thrown  a  brick  through  your 
window,  entered  and  rummaged  through  your  stuff. 
What  is  the  first  thing  you  do?You  call  the  police  and 
they  try  to  find  the  perpetrator.  In  the  computer 
world,  what  do  we  do?  Blame  the  builder  for  build¬ 
ing  an  unsecure  house. 

Sure,  we  need  to  expect  that  software  companies 
will  produce  software  that  is  hardened  against  all 
attacks,  but  when  we  deal  with  groups  who  are  jack¬ 
hammering  through  the  side  of  the  vault,  it  is  time  to 
change  our  attitudes  about  the  black  hats  of  the 
world.  We  still  seem  to  look  at  them  as  little  more 
than  vandals  or  petty  thieves.  We  have  to  approach 
them  for  what  they  are:  the  organized  crime  and  ter¬ 
rorist  groups  of  the  2 1st  century  We  also  must  be  will¬ 
ing  to  impose  sanctions  on  countries  that  harbor 
these  groups  without  any  real  attempt  to  stop  them. 

Only  a  fool  believes  that  software  can  be  made 
100%  secure  against  attack.  While  one  side  builds  a 
tougher  bunker,  the  other  side  is  always  coming  up 
with  a  bigger  bomb.  It’s  time  to  speak  out  against  the 
black  hat  community  with  just  as  much  furor  as  we 
speak  out  against  Microsoft. 

Michael  Miller 
Colorado  Springs 


Legal  stronghold 

In  his  BackSpin  column  “Going,  going  . . .  321,  gone” 
(DocFinder:  3529), Mark  Gibbs  paints  the  companies 
using  the  Digital  Millennium  Copyright  Act  as  the 
bad  guys,  when  they’re  simply  using  a  tool  given  to 
them  by  the  federal  government.  As  with  any  bad 
law,  people  are  going  to  use  and  abuse  it.The  root  of 


E-mail  letters  to  jdix@nww.com  or  send  them  to  John  Dix,  editor  in 
chief,  Network  World,  118  Turnpike  Road,  Southborough,  MA  01772. 
Please  include  phone  number  and  address  for  verification. 


the  problem  is  Congress,  not  the  movie  studios. 
They’ll  do  what  they  can  to  maintain  a  competitive 
edge,  and  they’re  enabled  by  poor  legislation.  The 
movie  companies  couldn’t  have  put  321  out  of  busi¬ 
ness  without  the  government’s  hammer. 

Jeff  Steinport 
Grand  Rapids,  Mich. 


Off  the  hook 

1  liked  the  editorial  cartoon  “Phishing  season”  (Aug. 
9,  page  34),  in  which  a  computer  user  is  literally 
hooked  through  the  lip  by  a  fishhook  from  a  phish- 
er  trying  to  get  him  to  “verify”  his  credit  card  infor¬ 
mation. The  people  who  come  up  with  these  phish¬ 
ing  scams  are  pretty  creative. What  if  we  went  to  their 
bogus  sites  and  entered  bogus  information?  Can 
you  imagine  several  hundred  thousand  bogus 
entries  for  the  “poor”  phishers? 

This  scheme  would  replace  the  user  in  the  cartoon 
with  a  boot  or  a  tire. Very  appropriate,  if  you  ask  me. 

Ken  Diliberto 
Pomona,  Calif. 

A  better  spyware  solution 

The  story  “On  the  lookout  for  spyware”  (DocFinder: 
3524)  does  not  discuss  a  simple  solution:  Stop  using 
Internet  Explorer. 

Sure,  in  the  world  of  Web-based  applications  you 
cannot  eliminate  Internet  Explorer’s  use,  but  you 
can  seriously  curtail  it.  By  using  alternative 
browsers  such  as  Firefox,  you  can  eliminate  the 
influx  of  spyware/malware  into  your  systems.This  is 
a  proactive  approach  rather  than  putting  a  Band- 
Aid  on  the  gushing  wound  that  is  Internet  Explorer. 
I  have  implemented  Firefox  on  some  PCs  at  work 
and  for  family  and  friends  with  great  results.  If  you 
can  get  away  without  Internet  Explorer,  do  so. 

Robert  Roth 
East  Setauket.N.Y 


More  online!  www.nwfusion.com  Find  out  what  readers  are  saying  about  these  and  other  topics.  DocFinder:  3522 
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TOTALLY  UNPLUGGED 

Ira  Brodsky 


i 


n  the  past,  wireless  security  concerns 
seemed  exaggerated.  Given  the  limited 
enterprise  adoption  of  wireless  LANs  and 
mobile  data,  stories  about  researchers  crack¬ 
ing  wireless  encryption  codes  in  labs  made  a 
good  read  but  hardly  portended  a  wide 
spread  breakdown  of  network  security 

Now  users  are  buying  WLAN  gear  and  signing  up  for  mobile  data  ser¬ 
vices  in  droves  —  often  without  consulting  their  IT  departments. 
Suddenly  we  are  confronted  with  two  problems.  First,  with  users 
installing  inexpensive  WLANs  and  signing  up  for  mobile  data  services 
on  their  own,  there  is  a  lack  of  consistent  and  well-planned  security 
Second,  the  rapid  spread  of  wireless  data  products  and  services  is  cre¬ 
ating  security  problems  never  before  encountered. 

Today  anyone  can  create  a  wireless  network  or  wirelessly  extend  an 
enterprise  network  using  inexpensive  wireless  routers  and  client 
adapters  from  major  retail  chains.  But  making  it  easier  for  hackers  to 
access  enterprise  data  is  by  no  means  the  only  security  risk  that  com¬ 
panies  face.  Individuals  intent  on  stealing  music  or  uploading  porn  pre¬ 
fer  to  borrow  someone  elses  network.  And  unauthorized  wireless 
nodes  can  cause  interference  to  authorized  nodes,  disrupting  network 
operations. 

There  is  also  a  flip-side  problem.  Thanks  to  inexpensive  wireless 
adapters  and  chipsets  with  integrated  wireless, a  growing  percentage  of 
notebook  PCs  support  Wi-Fi.  According  to  wireless  network  software 
vendor  Cirond,  notebook  PCs  connected  to  wire  networks  may  broad¬ 
cast  data  or  provide  back-door  access  if  ad  hoc  wireless  networking 


Wireless  insecurity  rising 


mode  inadvertently  is  left  on. 

Cell  phone-based  mobile  data  is  mushrooming.  For  years,  vendors  and 
analysts  assumed  the  goal  was  wireless  access  to  the  Web  and 
e-mail.  Instead, the  killer  applications  are  downloading  ring  tones, games 
and  screen  savers,  and  exchanging  text,  picture  and  voice  messages. 

The  good  news  is  that  mobile  phone  networks  are  closed  systems.You 
can  download  new  software  for  your  handset  —  but  only  software 
approved  by  your  service  provider.  Still,  the  freedom  to  send  and 
receive  text,  picture  and  voice  messages  from  virtually  anywhere  cre¬ 
ates  unique  security  problems. 

For  example,  text  messaging  during  meetings  can  be  used  for  more 
than  just  arranging  lunch  dates.  It’s  also  conceivable  that  cameras  will 
become  a  standard  feature  on  mobile  phones.  Consider  the  ramifica¬ 
tions  of  employees  and  visitors  having  cameras  with  the  ability  to 
instantly  transmit  pictures  to  the  Internet  always  at  the  ready 

A  voice  application  of  mobile  data  technology  —  push-to-talk  service 
—  could  result  in  embarrassing  interruptions  and  disclosures.  Push-to- 
talk  lets  other  users  grab  your  attention  by  speaking  over  your  push-to- 
talk  handset’s  loudspeaker  without  ringing  or  waiting  for  you  to  answer 
as  you  would  a  regular  phone  call.  If  you  forget  to  turn  this  feature  off, 
someone  else  may  blurt  out  who-knows-what  over  your  phone  during 
a  meeting,  in  front  of  a  customer  or  in  a  packed  elevator. 

The  good  news  is  dozens  of  companies  are  springing  up  to  address 
these  and  other  wireless  security  issues.  Let’s  hope  they  do  —  and  fast. 


Still,  the  freedom 

to  send  and 
receive  text, 
picture  and  voice 
messages  from 
virtually  any¬ 
where  creates 
unique  security 
problems. 


Brodsky  is  president  of  Datacomm  Research  in  St.  Louis.  He  can  be 
reached  at  ibrodsky@datacommresearch.com. 


ABOVE  THE  CLOUD 

James  Kobielus 

As  high-tech  buzz  phrases  go,  service-ori¬ 
ented  architecture  is  vaguer  than  most. 
SOA  isn’t  a  technology,  product,  service 
or  protocol.  But  it’s  been  mentioned  in  many 
marketing  pitches  lately,  promising  greater 
developer  productivity  and  standards-based 
interoperability  if  you  buy  this  vendor’s  appli¬ 
cation  platform  or  that  one’s  visual-modeling  tool.  Over  the  past  three 
months, Sun,  Oracle,  Microsoft  and  IBM  all  announced  products  or  ini¬ 
tiatives  for  implementing  SOA  in  their  respective  environments. 

SOA  is  a  substantial  and  growing  body  of  practical  techniques  for 
designing  shareable,  reusable,  interoperable  Web  services.  Just  as 
important,  the  past  few  years  have  seen  the  emergence  of  a  universal, 
standardized,  SOA-enabling  middleware  fabric  built  on  the  Web 
Services  Description  Language  (WSDL),  Simple  Object  Access  Pro¬ 
tocol  (SOAP)  and  Universal  Description,  Discovery  and  Integration. 

SOA  is  a  disruptive  approach  to  building  distributed  services.  Until 
now,  we’ve  developed  new  functionality  on  and  within  concepts  such 
as  platform,  application  and  language.  Each  of  these  concepts  has  tra¬ 
ditionally  had  a  well-defined  sphere  of  reference: The  platform  hosted 
the  application, and  the  application  was  developed  in  a  language.  Now 
all  that  is  changing,  thanks  to  the  emergence  of  SOA. 

The  first  of  the  old  computing  concepts  to  wither  away  will  be  the 
platform.This  term  originally  applied  to  operating  systems,  then  includ¬ 
ed  application  servers  that  implement  a  particular  development  frame¬ 
work  (Java  2  Platform  Enterprise  Edition  or  .Net)  over  one  or  more 
operating  systems.  But  the  growth  of  standards-based,  distributed  Web 
services  has  made  it  clear  that  fewer  and  fewer  business  processes  will 
execute  entirely  within  the  confines  of  a  J2EE  1.3  server  or  Windows 
Server  2003,  or  Linux,  but  will  execute  across  them  all.  When  all  plat¬ 
forms  share  a  common  environment  for  describing,  publishing  and 
invoking  services,  the  notion  of  self-contained  platforms  disintegrates 
in  favor  of  SOA,  which  is  essentially  a  platformless  service  cosmos. 


SOA  and  the  death  of  platforms 


Another  casualty  of  this  evolution  is  the  notion  of  applications  as  dis¬ 
crete,  functional  components  that  execute  on  particular  platforms. SOA 
is  founded  on  the  notion  of  virtualization.  Under  this  paradigm, services 
describe  abstract  interfaces  within  standard,  platform-independent 
metadata  vocabularies  such  as  WSDL. The  underlying  service  function¬ 
ality  may  be  provided  from  components  on  any  platform  without  need¬ 
ing  to  change  the  interface.  Under  SOA,  the  application  dissolves  into  a 
service  that  may  have  no  fixed  implementation  but  simply  bids  for  on- 
demand  networked  software  and  hardware  resources. 

Programming  languages  also  are  becoming  something  that  fewer 
developers  touch  directly  Visual  model-driven  development  and  auto¬ 
mated  code  generation  are  at  the  forefront  of  the  SOA  revolution.You’re 
more  likely  these  days  to  see  a  vendor  boast  of  its  ability  to  support 
visual  modeling  in  Unified  Modeling  Language  than  development  in 
Java,  C#  or  any  other  declarative  programming  language.  For  complex, 
orchestrated,  multiplatform  Web  services,  visual  modeling  is  the  most 
effective  approach  for  specifying,  implementing  and  maintaining  the 
end-to-end  logic  and  rules  on  which  the  service  depends. 

SOA  has  spawned  a  range  of  terms  to  describe  what  developers  actu¬ 
ally  develop.  IT  professionals  increasingly  define  their  creations  in 
terms  of  services,  models  and  patterns,  rather  than  platforms,  applica¬ 
tions  and  languages.The  notion  of  patterns  will  become  critical  to  dis¬ 
cussions  of  distributed  services.  A  pattern  is  a  generic  approach  — 
such  as  service  proxying  or  service  coordination  —  to  architecting 
interactions  in  the  infrastructure.  Every  pattern  defines  its  own  abstract 
Web  services  functional  elements  and  SOAP-based  interactions. 

Welcome  to  the  dizzying  new  world  of  SOA.  Platforms  are  dissolving, 
new  concepts  are  taking  over,  and  Web  services  will  become  every¬ 
where  shareable  and  reusable. 


Platforms  are 
dissolving,  new 
concepts  are  tak¬ 
ing  over,  and  Web 
services  will 
become  every¬ 
where  shareable 
and  reusable. 


Kobielus  is  a  senior  analyst  with  Burton  Group,  an  IT  advisory  service 
that  provides  in-depth  technology  analysis  for  network  planners.  He  can 
be  reached  at  (703)  924-6224  or  jkobielus@burtongroup.com. 
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M  a  new  variant  of  the  MyDoom  virus  malicious  applications  use  file  encryption  to  help 
begins  spreading  across  the  mask  their  intentions,  a  tool  called  LordPE  lets 
Internet,  slowing  search  engines  to  Ullrich  capture  the  program  as  it  runs.  The  Ethereal 
a  crawl  in  the  late  morning  of  July  protocol  analyzer  lets  him  see  what  network  ports 
26,  Johannes  Ullrich  jumps  into  action.  the  virus  is  using  and  what  type  of  traffic  it  gener- 

Ullrich,  CTO  at  the  SANS  Institute's  Internet  Storm  ates  on  a  packet-by-packet  basis. 

Center  (ISC)  and  one  of  30  “handlers"  who  cover  the  Ullrich  observes  MyDoom-0  pinging  three  IP 
storm  center  round  the  clock,  is  on  duty  this  morning,  addresses  on  Port  1034  when  it  activates,  but  the 
He  doesn’t  have  far  to  go  to  find  the  virus;  there  are  three  addresses  don’t  respond. The  remote  systems 
already  a  bunch  of  copies  in  his  e-mail  in-box.  could  be  overloaded  with  requests  from  infected 

He  gets  to  work,  first  saving  a  copy  of  the  virus  code  machines  or  already  taken  offline  by  other  con- 
(a  file  called  instruction.exe),  and  then  using  VM Ware  cerned  parties.  Another  possibility  is  that  they’re 
software,  which  lets  you  run  multiple  operating  sys-  decoys  to  send  parties  like  ISC  and  anti-virus  ven- 
tems  on  a  single  device,  he  executes  the  virus  in  dors  on  a  wild  goose  chase. 

Windows  2000  to  see  what  it  does.  After  getting  no  response  to  its  pings,  the  virus 

By  using  VMWare  on  his  SuSE  Linux  system,  moves  on  to  the  business  of  replicating. To  Ullrich's 
Ullrich  can  create  an  operating  system  sandbox  that  surprise,  this  MyDoom  variant  does  more  than  cull 
prevents  permanent  damage  from  a  virus  or  rogue  a  local  Web  cache  for  potential  e-mail  addresses  to 
application.  As  soon  as  the  VMWare  session  is  target,  as  previous  variants  had.  It  goes  out  and 
restarted,  the  virtual  Win  2000  session  essentially  is  searches  Google,  Yahoo,  Altavista.  and  Lycos  Tor  ev; 
wiped  out  and  a  clean  install  is  created.  While  most  mail  address  in  a  given  domain  ,/%s 

I,  ]  [U  ■■{  j  •  @nww.com).The  number  of  search  queries 

(^|  1  I  f  ^  l,  ^  |  L  [  j  ^  jl  9eneratecl  by  the  virus  results  in  a  denial- 

&  U#V  J  MrL  T/TjJ  (both  in  the  U.K.  and  for  many  users  in  the 

nir  * tt ^  JT v ^  v  ^  j  vA  .Tp^  ’p*  U.S.)  and  also  affects  the  performance 
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of  the  other  three  engines,  according  to  reporting  from 
Keynote  Systems  on  the  day  of  the  attack. 

MyDoom’s  interference  with  Google  came  on 
the  same  day  the  company  announces  an  . 

expected  stock  price  for  its  upcoming  IPO.  But 
Ullrich  doesn’t  think  the  virus  was  targeting 
Google.“The  distributed  DoS  is  an  unintended 
side  effect  "Ullrich  says.“It  wouldn’t  use  four  or 
five  search  engines  if  it  were  going  to  try  to 
take  one  down.” 

As  Ullrich  pores  over  access  logs  and  code  from 
this  MyDoom  variant,  one  might  picture  him  sitting 
in  a  high-tech  data  center  with  rows  of  terminals 
and  huge  monitors.  In  reality  this  key  outpost  in  the 
global  fight  against  Internet  crime  is  a  cluttered  office  in  a 
spare  bedroom  of  his  white,  two-story  house  in  a  quiet 
neighborhood  outside  Boston.  SANS  Institute  is  headquar¬ 
tered  in  Bethesda,  Md. 

There  are  two  desks,  one  for  him  and  one  for  his  wife,  a 
high-tech  consultant. Ullrich’s  desk  has  a  box  on  it  that  one 
of  his  two  cats  likes  to  lounge  in  while  he  works.  A  rack 
holds  computer  CDs  and  music  discs  from  a  range  of 
artists  including  Enya,  Bach  and  The  Grateful  Dead.  A  red 
punching  bag  nearby  comes  in  handy  for  those  really 
stressful  days,  Ullrich  says. 

He  is  the  only  full-time  staffer  among  the  30  ISC  handlers 
who  span  the  globe  and  are  on  duty  24-7.  The  rest  are  vol¬ 
unteers  who  take  turns  watching  over  the  Internet.  Most 
have  other  jobs  and  aren’t  expected  to  be  awake  for  their 
entire  24-hour  shift.  All  the  ISC  handlers  have  technical 
backgrounds  with  varying  specialties. 

Ullrich’s  other  SANS  responsibilities  include  overseeing 
its  Web  sites.  Throughout  the  day  Ullrich’s  cell  phone 
vibrates  on  the  desk,  signaling  a  new  text  message  alert 
from  the  SANS  Web  servers.  They  were  getting  overloaded 
with  traffic  from  folks  looking  for  MyDoom  information. 

Data  comes  into  the  ISC  via  a  form  on  its  Web  site  or 
through  D-Shield,  a  service  Ullrich  developed  that  collects 
and  analyzes  firewall  logs  for  suspicious  activities  includ¬ 
ing  port  scans.  For  the  interesting  stuff  that  comes  in,  ISC’s 
goal  is  to  help  mitigate  the  damage  in  any  way  For  viruses, 
that  means  helping  identify  signatures  for  stemming  the 
tide.  For  malware,  it  could  mean  contacting  ISPs  to  shut  a 
site  down  or  contacting  the  proper  authorities  when 
crimes  have  been  committed. 

The  week  before  the  MyDoom-0  outbreak, someone  had 
sent  ISC  a  file  containing  user  names  and  passwords  that 
were  collected  by  a  key-logging  worm  that  recorded  any¬ 
thing  a  user  entered  into  a  site  he  accessed  with  secure 
HTTP  In  May  a  file  with  10,000  account  numbers  was 
dumped  into  ISC’s  lap. 

“We  try  to  close  the  loop  with  the  sites  involved,”  Ullrich 
says  of  such  sensitive  information  “It’s  about  public 
awareness,  too.” 

Each  on-duty  handler  posts  a  diary  entry  detailing  the 
interesting  items  of  the  day  On  slow  days,  they’re  written  up 
at  the  end  of  the  shift,  but  on  days  like  this,  the  diary  is 
being  constantly  updated  with  new  information  as  it’s  dis¬ 
covered.  Ullrich’s  diary  from  July  26  can  be  found  at 
www.nwfusion.com,  DocFinder:  3521 . 

Despite  ISC’s  hard  work  and  dedication,  their  efforts  are 
not  always  successful.  An  attempt  to  track  malware  might 
only  lead  to  a  hacked  machine  that  is  acting  as  a  relay  not 
to  the  author.  “Sometimes  it’s  easier  to  follow  the  money 
trail,”  Ullrich  says.  Many  of  today’s  viruses  are  written  to 
make  a  profit  (either  by  sending  spam  or  stealing  informa¬ 
tion). “The  hard  part  is  getting  the  money  transferred.” 

Fvei  t  the  money  trail  can  go  cold  or  lead  to  a  wall.There’s 
a  group  in  Russia  that  is  pretty  well  known, but  the  Russian 
Mafia  most  likely  protects  them,  Ullrich  says. 

Mushing  expeditions  could  be  better  contained,  but 

■  ay  corporate  sites  aren’t  interested  in  fighting  back.“At 
M<  end  of  a  phish,  they  usually  redirect  you  to  the  real 
sue,  Ullrich  explains.“You  could  sniff  for  when  that  hap¬ 
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pens  and  pop  up  a  warning  to  users  telling  them 
they’ve  been  scammed.” 

He  adds  that  some  phishing  e-mails  use  the  actual  graph¬ 
ics  from  the  site  being  spoofed  (like  the  PayPal  logo),  so 
the  legitimate  site  could  check  the  referral  and  replace  the 
graphic  with  a  warning. 

In  the  case  of  the  MyDoom-O,  Ullrich  and  other  han¬ 
dlers  received  it  like  any  typical  user:  in  an  e-mail  in-box. 
The  virus  spreads  either  as  a  faked  bounce-back  mes¬ 
sage  or  as  a  note  from  a  system  administrator  claiming 
the  targeted  user  was  sending  spam  and  the  attached  file 
would  fix  the  problem.  “It’s  the  usual  antics,”  Ullrich 
laments,  adding  that  SANS  doesn’t  automatically  strip 
out  all  suspicious  attachments  because  it  wants  to  inves¬ 
tigate  the  new  stuff  coming  in. 

Ironically  when  he  first  saw  the  faked  bounce  messages 
in  his  in-box,  he  thought  they  were  real  and  simply  the 
normal  e-mail  errors  ISC  receives  as  part  of  the  D-Shield 
service. 

Ullrich’s  analysis  shows  that  the  requests  MyDoom  makes 
to  the  search  engines  do  not  stand  out  in  any  way  from  a 
regular  request,  meaning  the  affected  search  engines  can¬ 
not  just  set  up  a  filter  to  block  queries  coming  from  the 
virus.lt  also  mimics  the  version  of  a  Web  browser  installed 
on  the  infected  machine  to  help  blend  in  with  everyday 
HTTP  requests.  Early  on,  Ullrich  changed  his  router’s  IP 
tables  to  limit  outgoing  traffic  from  his  “infected”  machine. 
With  an  estimated  300,000  infected  machines,  Ullrich  does¬ 
n’t  want  to  be  piling  on  the  affected  search  engines  as  he 
does  his  investigation. 


Within  a  few  hours  of  the  initial  infections,  the 
major  anti-virus  vendors  have  released  updated  sig¬ 
nature  files  that  will  detect  the  virus.  But  ISC  han¬ 
dlers  keep  working  to  figure  out  everything  the  vims 
might  do.  “One  problem  with  some  of  the  anti-vims 
vendors  is  they  only  look  at  the  [vims]  signature, 
once  they  reverse-engineer  it  to  get  the  signature, 
they’re  basically  done,”  Ullrich  says. 

He  has  uploaded  the  code  to  the  ISC  “zoo,”  an 
FTP  site  where  handlers  share  interesting  code  so 
others  with  expertise  in  viruses  can  help  in  the 
investigation. 

MyDoom  is  only  30K  in  size,  but  most  of  the  code 
is  binary.  Ullrich  opens  the  file  with  a  text  editor  to 
look  for  human-readable  strings  that  might  provide 
more  insight  into  how  the  virus  works  and  its  intend¬ 
ed  purpose.  It  appears  as  if  the  virus  looks  for  the  string 
“_AT_”  (a  common  way  to  print  an  e-mail  address  in  an 
effort  to  avoid  spam  bots)  in  its  search  for  potential  e-mail 
targets.  There’s  also  a  list  of  email  addresses  it  won’t  send 
to,  such  as  anti-virus  vendors,  Hotmail  or  Yahoo  accounts. 

The  vims  author  also  put  in  very  explicit  fake  email 
headers  to  try  to  avoid  spam  detectors.  “It  fakes  like  it  is 
sending  from  Outlook  Express  with  a  practical  version 
number,”  in  this  case  6.00.2600.0000,  Ullrich  says. 

Like  previous  versions  of  MyDoom,  this  one  too  seems  to 
be  listening  on  certain  polls  for  commands.  Ullrich  pings 
each  port,  but  the  virus  does  not  react.  He  suspects  a  cer¬ 
tain  ping  sequence  or  HTTP  header  code  is  needed  to 
awaken  the  virus. 

“It’s  amazing  how  these  virus  writers  get  such  small 
code,”  Ullrich  says.“They  should  be  working  for  some  of  the 
commercial  code  vendors.” 

By  4  p.m.EST,all  the  affected  search  engines  seem  to  be 
fully  functional,  and  infected  machines  around  the  globe 
are  being  cleansed.  Ullrich  plans  to  spend  a  few  more 
hours  trying  to  decode  the  virus’s  true  intentions  before 
calling  it  a  night.  His  efforts  paid  off.The  day  after  the  initial 
outbreak,  ISC  and  others  discovered  MyDoom-0  dropped 
the  Zindos.A  backdoor  on  infected  machines, which  could 
be  used  in  a  DoS  attack  against  Microsoft.com. 

There’s  a  joke  among  the  handlers  about  who  best  takes 
care  of  the  Internet  when  on  duty  “Guess  I  didn’t  do  well 
today’  Ullrich  says  with  a  smile.  ■ 


■ 


Handler's  diary  -  July  26, 2004 

My  Doom-0  hits  search  engines  hard. 

Details  from  Ullrich's  blog 

MyDoom  creates  the  executable  files  C:\Windows\services.exe  and  java.exe,  and  executes  them. 

These  URL  templates  are  used  to  query  the  search  engines.  '%s'  is  replaced  with 
the  search  string. 

http://search.lycos.com/default.asp?lpv=1&loc=searchhp&tab=web&query=%s  &nbq=%d 
www.altavista.com/web/results?q=%s&kgs=0&kls=0  &n=%d 

http://search.yahoo.com/search?p=%s&ei=UTF-8&fr-fp-tab-web-t&cop=mss&tab=  &num=%d 


www.google.com/search?hl=en&ie=UTF-8&oe=UTF-8&q=%s 


■ 


Sample  anti-virus  policy 
http://isc.sans.org/papers/antivirus.pdf 

Anti-virus  vendor  links: 

www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=W0RM_MYD00M.M 

http://us.mcafee.com/viruslnfo/default.asp?id=deseription&virus_k=127033 

www.sophos.com/virusinfo/analyses/w32mydoomo.html 

http://securityresponse.symantec.com/avcenter/venc/data/w32.mydoom. m(atmm.html 

www.f-secure.com/v-descs/mydoom_m.shtml 

www3.ca.com/securityadvisor/virusinfo/virus.aspx?id=39711 

www.pandasoftware.com/virus_info/encyclopedia/overview.aspx?ldVirus=49861&sind=0 

www.viruslist.com/eng/alert.html?id=1927068 

www.grisoft.com/virbase/virbase.php?lng=us&type=web&action=view&qvirus=086fda5c5c9e7000 
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PLATINUM 


LlNKBYB® 

A  Division  of  Cisco  Systems,  Inc. 

Linksys 

Linksys,  a  division  of  Cisco  Systems,  is  an  award-winning 
leader  in  the  development  of  wireless,  broadband  and  LAN 
networking  hardware  for  home  and  small  business  environ¬ 
ments.  Linksys  networking  solutions  emphasize  speed, 
affordability,  reliability,  and  widespread  compatibility  and  are 
sold  through  leading  master  distributors,  computer  resellers, 
E-commerce  and  retail  stores  worldwide. 

(800)  linksys  •  www.linksys.com 


PLATINUM 

Qualco/wna 

Qualcomm,  Inc. 

QUALCOMM  Incorporated  is  a  leader  in  developing  and 
delivering  innovative  digital  wireless  communications 
products  and  services  based  on  the  Company’s  CDMA 
digital  wireless  technology. 

(858)587-1121  •  www.qualcomm.com 


GOLD  and  WI-FI  PROVIDER 


WIRELESS  NETWORKS 

Aruba  Wireless  Networks 

Aruba  Wireless  Networks  develops  and  markets  centralized 
systems  that  enable  corporations  to  secure  their  networks 
from  the  dual  threats  of  Wi-Fi  and  mobility.  Aruba’s  solution 
consists  of  a  full  range  of  programmable  security  platforms 
designed  to  securely  connect  mobile  users  and  mobile 
devices  to  corporate  applications. 

(408)  227-4500  •  www.arubanetworks.com 


GOLD 


BlackBerry 

BlackBerry  by  Research  in  Motion 

BlackBerry®  is  the  leading  wireless  enterprise  solution 
that  keeps  mobile  professionals  connected  to  people  and 
information  while  on  the  go.  It  provides  users  with  secure, 
wireless  access  to  a  full  suite  of  business  applications, 
including  email,  corporate  data,  phone,  SMS,  web  and 
organizer  features. 

(519)  888-7465  •  www.blackberry.com 


GOLD 
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SjSeverypath 


Everypath,  Inc. 

Everypath  is  the  leading  provider  of  mobile  task  automation 
software  to  global  1000  companies,  enabling  enterprises 
lower  costs  while  increasing  their  visibility  into  field  opera¬ 
tions  and  increasing  the  productivity  of  their  mobile  work 
force.  Everypath's  customers  include  leaders  such  as 
Toshiba,  Bayer,  Yamaha,  Biogen  and  NTT. 

(408)  562-8059  •  www.everypath.com 


GOLD 


Good  Technology 

Good  Technology  is  the  leader  in  industry  standards-based 
enterprise  systems  for  wireless  corporate  messaging  and 
data  access.  The  company's  GoodLink  product  provides 
mobile  field  forces  with  a  two-way  wirelessly  synchronized 
connection  to  Microsoft  Exchange  Server  (enterprise  email, 
contacts,  calendar,  notes  and  tasks)  and  other  critical  appli¬ 
cations  including  CRM,  ERP  and  SCM. 

(408)  327-6000  •  www.good.com 


All  efforts  have  been  made  to  make  this  listing  as  complete  and  accurate  as  possible. Network  World  is  not  liable  for  errors  or  omissions. 
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SECTOR  SPOTLIGHT:  HEALTHCARE 


-Fi  keeps  nurses  on 

Hospitals  deploy  voice  over  802.11  wireless  LANs  to  save  time  and  lives. 

S  BY  SUSAN  BREIDENBACH 


Hospitals  are  finding  voice  over  wireless  LANs  to  be  just  what  the 
doctor  —  and  more  to  the  point,  the  nurses  —  ordered.  While 
VoWi-Fi  technology  is  hardly  commonplace  yet,  its  growing 
acceptance  in  life-or-death  situations  is  a  testament  to  the  value  of 
convergence  and  mobility 


“Healthcare  has  high-value  people  in  information¬ 
intensive  jobs  who  move  around  constantly  and  play 
different  roles  at  different  times,” says  Eric  Brown,  a 
vice  president  at  Forrester  Research.dt’s  the  perfect 
combination  for  VoWi-Fi." 

VoWi-Fi  also  helps  boost  productivity  amid  an 
acute  nursing  shortage  by  eliminating  the  need  for 
nurses  to  waste  time  searching  for  phones  to  use. 
“Hospitals  need  VoWi-Fi  because  nurses  don’t  sit 
behind  desks,” says  Craig  Mathias,  principal  analyst  at 
Farpoint  Group. 

The  need  to  improve  communications  and  provide 
better  access  to  resources  drove  Overlake  Hospital 
Medical  Center  onto  VoWi-Fi’s  bleeding  edge  three 
years  ago. 

“Our  two  biggest  issues  were  roaming  and  security 
says  Kent  Hargrave,  CIO  of  the  337-bed  facility  in 
Bellevue,  Wash.  Overlake  settled  on  Airespace  for  its 
802. 1  lb/g  WLAN  infrastructure, citing  superior  roam¬ 
ing  capabilities,  ease  of  implementation  and  manage¬ 
ment,  and  scalability/Tt  also  cost  about  50%  of  the 
other  solutions,”  Hargrave  says. 

The  client  devices  and  voice  switches  at  Overlake 
are  mixed.  Clinicians  needing  hands-free  communica¬ 
tion  are  equipped  with  Vocera  badges,  while  handsets 
include  Cisco  7290s  and  the  Avaya/SpectraLink  3626. 

Cisco’s  Call  Manager  is  deployed  in  one  depart¬ 
ment  while  an  Avaya  Media  Server  serves  the  rest  of 
the  hospital.1 The  Avaya  product  is  the  current 
favorite,  integrating  with  Overlake’s  Avaya  PBX  and 
extending  voice  mail  and  call  forwarding  to  the  wire¬ 
less  network.  But  increasing  wireless  handset  use  to 
enter  medical  data  via  XML  eventually  could  tip  the 
scales  in  Cisco’s  favor,  Hargrave  adds. 

Because  Overtake  deployed  its  WLAN  before  the 
802. 1 1  i  standard  was  finalized,  the  hospital  shored  up 
security  by  implementing  Wi-Fi  Protected  Access  and 
configuring  the  access  points  so  they  don’t  broad¬ 
cast  Server  Set  Identifiers.  Products  based  on  802. 1 1  i 
will  be  evaluated  as  they  become  commercially 
available. 

Children’s  Hospital  Central  California  in  Madera  let 
VoWi-Fi  mature  a  bit  before  jumping  on  board. The 
255-bed  pediatric  hospital  started  putting  voice  on  its 


802.1  lb  WLAN  in  mid-2003. 

The  network  includes  an  Avaya  PBX,  SpectraLink- 
manufactured  Avaya  3606  and  3626  handsets  and 
Cisco  1200  access  points.  Wired  Equivalent  Privacy 
security  is  enhanced  by  segregating  the  phones  on  a 
separate  virtual  LAN. 

A  pilot  project  revealed  bugs  requiring  firmware 
upgrades.The  centralized  Dynamic  Host  Configura¬ 
tion  Protocol  servers  weren’t  on  the  same  subnet 
with  the  phones,  and  requests  had  to  go  across 
routers  in  packets  of  at  least  300  bytes.The  phones 
wouldn’t  allow  packets  that  large  until  SpectraLink 
developed  a  fix. 

Similarly,  Cisco  had  to  tweak  its  access  points  to 
reduce  an  SNMP  polling  latency  that  went  unnoticed 
when  the  WLAN  was  data-onlyThe  access  points 
were  pausing  the  radio  signal  for  about  a  second 
whenever  they  received  a  request  from  the  WaveLink 
Mobile  Manager  management  application. 

“Still,  it  only  took  a  one-month  pilot  to  get  these 
bugs  worked  out,”  reports  Joseph  Egan,  Children’s  net¬ 
work  engineer.  Children’s  is  now  testing  a  push-to-talk 
feature  on  the  3626  phones  to  broadcast  Code  Blue 
alerts  that  summon  emergency  teams. 

Converging  communications 

At  the  UC  Davis  Medical  Center  (UCDMC)  in 
Sacramento,  a  wireless  hospital-wide  implementation 
began  this  spring. 

“We’ve  been  using  phones,  voice  mail,  e-mail,  indi¬ 
vidual  pagers,  group  pagers,  nurse-call  pagers,  over¬ 
head  paging,  intercom  systems,  radios,  cell  phones, 
fax,  text  messaging  and  clinical  messaging  on  our 
EMR  (electronic  medical  records)  system,”  says  Lisa 
Trask,  a  registered  nurse  and  an  associate  director  in 
UCDMC’s  patient  care  services  division.“It’s  insane.” 

The  healthcare  organization  is  reducing  device 
types  and  communication  methods  to  three  basic 
sets.  Desk  workers  have  traditional  phones.  Mobile 
clinicians  who  have  no  on-call  responsibilities  out¬ 
side  the  hospital  get  Vocera  badges.  And  on-call 
administrators  and  clinicians  get  cell  phones  —  ulti¬ 
mately  the  multiservice  handsets  that  can  roam 
between  cellular  and  Wi-Fi  networks. 


AT  A  GLANCE:  HEALTHCARE 

IT  spending  The  $1.5  trillion  healthcare  industry 
accounts  for  nearly  28%  of  total  U.S. 
IT  spending,  InStat  reports,  and  its  IT 
expenditures  are  growing  5%  to  6% 
each  year.  However,  healthcare 
spending  on  wireless  is  increasing 
much  faster —  20%  to  25%  annually. 

Wireless  FocalPoint  Group  expects  the 
investment  healthcare  industry  to  be  spending  $7 
billion  on  wireless  by  2010. 

Nursing  The  U.S.  Bureau  of  Labor  Statistics 
shortage  says  more  than  1  million  new  and 
replacement  nurses  will  be  needed 
by  2012. 


“Over  the  next  several  years,  we  plan  to  reduce 
phone  lines  by  40%  and  pagers  by  90%, ’’Trask  says. 
“Bandwidth  is  our  biggest  consideration,  and  we  are 
upgrading  to  802.1  lg  next  year’ 

The  VoWi-Fi  initiative  dovetails  with  UCDMC’s  imple¬ 
mentation  of  an  EMR  system  and  migration  to  elec¬ 
tronic  order  entry  and  clinician  documentation. The 
hospital  is  working  with  vendors  on  a  voice-login 
interface  that  clinicians  can  use  to  dictate  directly 
into  the  EMR  system  from  the  Vocera  devices. 

Unlike  most  early  Vo  Wi-Fi  adopters,  Indiana  Heart 
Hospital  (IHH)  in  Indianapolis  was  designed  from 
the  ground  up  using  IP  telephony 

The  hospital  was  opened  in  2002,  with  a  Cisco  infra¬ 
structure  and  SpectraLink  handsets.  Data  runs  over 
802.1  la,  and  voice  is  on  a  separate  802.1  lb  VLAN. 

Bedside  charting  and  order  entry  are  now  done  via 
350  wired  PCs  that  blanket  IHH.  But  going  forward, 
IHH  is  moving  to  Cisco’s  XML-enabled  handsets. 

“The  marriage  of  voice  and  data  on  a  wireless 
appliance  will  be  huge,”  asserts  Kevin  Hartzburg,  tele¬ 
com  manager  for  the  Community  Health  Network,  to 
which  IHH  belongs. 

The  bottom  line 

Egan  and  Hartzburg  agree  that  if  a  network  already 
includes  a  robust  WLAN  infrastructure  and  wired 
VoIRthe  cost  ofVoWi-Fi  should  be  little  more  than  the 
price  of  the  handsets.  While  volume  discounts  vary 
hospitals  can  buy  Vocera  badges  and  Cisco  7920 
handsets  for  less  than  $500,  including  the  software 
license  and  extra  batteries. 

In  general,  though,  hospitals  are  not  finding  hard- 
dollar  savings.The  payoff  is  recaptured  clinician  time, 
and  less  tangible  returns  such  as  enhanced  commu¬ 
nication  and  increased  staff  and  patient  satisfaction. 

Breidenbach  is  a  freelance  writer  in  Nevada.  She 
can  be  reached  at  sbreide@aol.com. 
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CLEAR  CHOICE  9 

TEST 


10G  Ethernet 
workgroup  switch 


Extreme’s  S400  raises  the  bar  for 
workgroup  switches 

EH  BY  DAVID  NEWMAN,  NETWORK  WORLD  LAB  ALLIANCE 

nabling  gigabit  to  the  desktop  —  or  to  lots  of  desktops  —  is  the  name  of 
the  game  for  Extreme  Networks’  new  Summit  400-48t,a  10G  Ethernet  work¬ 
group  switch. 


In  Network  World's  exclusive  test,  we 
pushed  more  than  70  million  packets  per 
second  through  the  S400.  Results  were 
generally  good. The  switch  delivered  low, 
consistent  delay  under  heavy  loads,  and 
it  offers  a  long  list  of  features,  including 
802.  IX  authentication  for  security 
On  the  downside,  the  S400’s  optional 
10G  Ethernet  module  is  a  bit  pricey  for  a 
workgroup  switch,  although  at  about 
$4,000  per  10G  Ethernet  port  (plus 
optics)  its  still  competitive. Also,  the  S400 
posted  subpar  numbers  in  some  tests  of 
jumbo  frames.  On  balance,  though,  the 
S400  is  a  more-than-capable  performer: 
In  fact,  it’s  the  fastest  wiring  closet  switch 


Net  Results 


Summit  400-48t 


Company:  Extreme  Networks, 
www.extremenetworks.com.  Cost:  Base 
switch  with  48  10/100/1,000  ports,  $8,995; 
advanced  software  license,  $995;  2-port 
10G  bit  Ethernet  XENPAK  module,  $7,995; 
10G  XENPAK  optics,  $4,995  each;  external 
power  suply  and  rack  unit,  $990;  system 
as  tested,  $26,980.  Pro:  High  port  density, 
line-rate  10-gigabit  Ethernet  performance, 
security  features.  Con:  Problems 
handling  jumbo  frames. 


The  breakdown 


10G  Ethernet  baseline  performance 
(covers  througput  delay,  and  jitter)  20% 


Gigabit  Ethernet  baseline  performance 
(covers  throughput  delay,  and  jitter)  20% 


Performance  with  maximum  ACLs  (covers 
throughput  delay,  and  jitter  with 
maximum  ACLs  applied)  10% 


Rapid  spanning  tree  performance 
(measures  failover  time  using  802.1  W 
rapid  spanning  tree)  10% 


SSH  and  802.1x  support  15% 


Features  25% 
TOTAL  SCORE 


5 

5 

4.4 


Scoring  Key:  5:  Exceptional;  4:  Very  good;  3: 
Average;  2:  Below  average;  1:  Consistently 
subpar 


we’ve  tested. 

The  S400  fits  in  1U  and  offers  48 
10/1 00/ 1 000M  bit/sec  copper  ports, 
with  an  optional  module  for  two  10G 
Ethernet  interfaces.  Features  include 
support  for  major  routing  protocols, 
IPv4  multicast  and  up  to  4,096  virtual 
LANs.  External  redundant  power  is  also 
an  option. 

Performance  tests 

We  conducted  separate  tests  of  the 
S400’s  10G  Ethernet  and  Gigabit 
Ethernet  handling.  Because  the  10G 
Ethernet  interfaces  fit  in  an  optional 
module,  users  can  buy  the  switch  with 
10/100/1000  copper  interfaces  and  add 
10G  Ethernet  later. 

Our  10G  Ethernet  tests  measured  how 
quickly  the  S400  could  move  traffic 
between  10G  Ethernet  uplink  ports  and 
Gigabit  Ethernet  downlink  (edge)  ports. 
We  configured  a  Spirent  Communica¬ 
tions  SmartBits  traffic  generator/analyzer 
to  send  test  frames  to  the  S400’s  uplink 
and  downlink  ports 

In  a  nutshell,  the  S400  delivered  line- 
rate  throughput  in  all  the  10G  Ethernet 
test  cases  we  tried  (see  graphic,  right). 
These  included  baseline  tests  at  Layer  2 
and  Layer  3  and  tests  with  one  and  two 
10G  Ethernet  interfaces  exchanging  traf¬ 
fic  with  10  and  20  edge  gigabit  interfaces. 
The  S400  didn’t  drop  a  single  frame  in 
any  of  these  tests. 

Access  control  lists  (ACL),  which  can 
severely  degrade  performance  on  some 
switches,  posed  no  problem  for  the  S400, 
either.  We  reran  the  10G  Ethernet  base¬ 
line  tests  with  the  maximum  number  of 
ACLs  applied  to  every  switch  interface; 
for  the  S400,that  is  124  ACLs  per  port  on 
all  50  ports.  Again,  the  switch  delivered 
line-rate  throughput. 

Delay  was  also  low  and  constant  across 
all  our  10G  Ethernet  tests  (see  graphic, 
page  49).  The  average  delay  and  jitter 
numbers  we  observed  are  comparable  to 
other  high-performing  10G  Ethernet 
backbone  switches  we’ve  tested.  Even 
the  highest  maximum  delay  number  we 
observed  —  104.4  microsec  when  mov¬ 
ing  jumbo  frames  —  is  nowhere  near 
enough  to  have  an  appreciable  effect  on 
application  performance. 


Extreme's  new  Summit  400-48L  a  10G  Ethernet 
workgroup  switch,  offers  high  port  density,  rich 
feature  set  and  good  performance. 


Trying  to  get  a  Gig 

The  S400’s  performance  in  gigabit-only 
tests,  while  generally  good,  didn’t  match 
the  flawless  levels  in  the  10G  Ethernet 
events. 

Throughput  was  equivalent  to  92%  of 
line  rate  or  better  in  all  the  tests  we  ran 
using  standard  Ethernet  frame  lengths. 
We  observed  a  slight  difference 


Measuring  10G  throughput 


depending  on  whether  we  used  ran¬ 
dom  or  non-random  media  access 
control  (MAC)  addresses;  on  produc¬ 
tion  networks,  random  addresses  are 
far  more  common.  This  won’t  neces¬ 
sarily  harm  application  performance, 
because  few  (if  any)  production  net¬ 
works  have  sustained  utilization  over 
90%. 

Handling  jumbo  frames  was  anoth¬ 
er  story.  When  we  offered  the  S400 
repeated  iterations  of  9,000-byte 
frames  with  a  random  pattern  of  MAC 
addresses,  throughput  was  zero. There 
was  no  rate  at  which  the  device 
would  forward  traffic  without  at  least 
some  loss.  Throughput  rose  to  the 
equivalent  of  81%  of  line  rate  when  we 
repeated  the  test  using  non-random 
MAC  addresses.  Again,  random  MAC 
addresses  are  the  rule  on  production 
networks. 

More  seriously,  the  S400  dropped 

See  Extreme,  page  49 


In  our  test  of  how  quickly  Extreme  Networks’  new  Summit  400-48t 
switch  —  with  its  two-port  10G  Ethernet  module  installed  —  could 
move  traffic  between  10G  Ethernet  uplink  ports  and  gigabit  Ethernet 
downlink  (edge)  ports,  the  combination  delivered  line-rate  througput 
in  every  case. 

Aggregate  throughput  (frames  per  second) 
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0  Loop  mobile 


ILoop  Mobile  Inc. 

ILoop  Mobile  is  an  interactive  mobile  marketing  and  mobile 
communities  enabler.  With  our  Internet  hosted  services  and 
private-label  premium  SMS  campaigns,  brands,  content  own¬ 
ers,  marketing  agencies  and  traditional  media  channels  can 
reach  out  and  engage  their  customers  one-on-one  through 
the  mobile  phone. 

(415)  503-4314  •  www.iloopmobile.com 
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M  I  R  R  A 


Mirra,  Inc. 

Mirra  is  the  creator  of  the  Mirra  Personal  Server,  an  intelli¬ 
gent,  automatic  solution  for  file  protection  and  sharing 
anywhere,  any  time  designed  specifically  for  consumers 
and  small  business  users.  Mirra  delivers  an  easy,  secure  way 
to  protect  and  share  files  over  local  networks  and  the  web. 
Introducing  Mirra  2.0  -  go  to  www.mirra.com, 

(408)  215-5700  •  www.mirra.com 
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NOKIA 

Lifeblog 


Six  Apart's 

L*  TypePad 

I  Personal  Weblogging  Service 


Nokia  Corporation 

Nokia,  the  world  leader  in  mobile  communications,  is 
dedicated  to  enhancing  people’s  lives  by  providing 
easy-to-use  products,  such  as  the  Nokia  Lifeblog  automatic 
multimedia  diary. 

+358-71-8008000  •  www.nokia/lifeblog.com 


SixApart,  Ltd. 

Six  Apart,  the  company  behind  the  Movable  Type  and 
TypePad  weblogging  tools,  enables  people  to  publish  their 
ideas  on  the  Internet  with  simple,  yet  full-featured  software 
and  services. 


(650)  571-1709  •  www.sixapart.com 
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NOVELLI 


Porter  Novelli 


Porter  Novelli  public  relations  is  a  trusted  advisor  who 
provides  the  strategic  insights  and  ideas  that  have  a  mean¬ 
ingful  impact  on  business.  Porter  Novelli  brings  deep  market 
experience  and  global  resources  to  the  technology  industry's 
emerging  innovators  and  established  enterprises. 

(415)  975-2200  •  www.porternovelli.com 


GOLD 


WSpectraLink 


Wireless@work 


Spectralink  Corporation 

SpectraLink  Corporation  (Nasdaq:  SLNK)  is  the  leading  U.S. 
manufacturer  and  provider  of  wireless  telephone  systems 
for  the  workplace.  SpectraLink's  NetLink  Wireless  Telephones 
work  with  Wi-Fi  access  points,  PBXs,  and  IP  telephony 
servers  from  the  leading  manufacturers  to  enable  greater 
mobility,  improved  communication,  and  rapid  response 
to  customers. 

(303)  440-5330  •  www.spectralink.com 
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Intellisync  paMe 

mobility  unlimited"*^  * 


Intellisync  Corporation/palmOne,  Inc. 


Intellisync  is  a  leading  provider  of  mobile  solutions  to  enter¬ 
prises,  network  operators,  software  providers  and  device 
manufacturers.  palmOne,  Inc.  is  an  industry  leader  of  hand¬ 
held  computing  and  communications  solutions.  Intellisync 
and  palmOne  are  both  committed  to  enhancing  mobility 
across  the  enterprise. 

(408)  321-7650  •  www.intellisync.com 
(408)  503-7000  •  www.palmone.com 
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continued  from  page  47 

frames  of  any  length  after  we  ran  repeat¬ 
ed  iterations  of  the  jumbo  tests  with  ran¬ 
dom  addresses.  Rebooting  the  switch 
cleared  the  problem,  but  left  us  wonder¬ 
ing  whether  the  beta  software  we  tested 
had  issues  with  memory  management 
and/or  MAC  address  hashing. 

Extreme  acknowledged  the  issue,  char¬ 
acterizing  the  result  as  “not  acceptable.”  At 
press  time,  Extreme  was  working  on  a  fix. 

It’s  important  to  note  that  these  results 
are  reproducible  only  in  controlled  lab 
conditions.  Those  conditions  —  repeated 
60-second  blasts  of  traffic  at  or  near  line 
rate  on  48  ports  in  a  fully  meshed  pattern 
—  are  highly  unlikely  to  occur  on  produc¬ 
tion  networks. 

Even  with  the  jumbo  and  MAC  address 
issues  we  saw,  delay  and  jitter  remained 
remarkably  low. The  worst-case  delay  num¬ 
ber  of  close  to  200  microsec  with  jumbo 
frames  with  random  MAC  addresses  is 
nowhere  near  high  enough  to  have  an 
effect  on  application  performance. 

Jitter  was  also  remarkably  low,  which 
augurs  well  for  VoIP  and  video  applica¬ 
tions.  With  standard-sized  frames  and  ran¬ 
dom  MAC  addresses,  maximum  jitter  was 
about  3  microsec  —  at  least  an  order  of 
magnitude  below  the  point  where  voice 
or  video  applications  would  suffer. 

Spanning  Tree  failover 

We  assessed  the  S400’s  support  for  Layer- 
2  failover  by  setting  up  802.  lw  rapid  span¬ 
ning  tree  on  a  pair  of  S400  switches.  While 
offering  traffic  to  one  switch,  we  discon¬ 
nected  a  primary  link,  forcing  the  switch 
to  redirect  traffic  onto  a  secondary  link. 
Over  repeated  trials,  the  S400  reconverged 
in  an  average  of  1.091  seconds.  That’s  not 
a  bad  result,  but  it’s  not  near  the  tens-of- 
milliseconds  numbers  other  10G  Ethernet 


backbone  switch/routers  that  typically 
use  more  powerful  processors. 

Extreme  showed  off  two  security  fea¬ 
tures  in  the  S400:  802.  IX  authentication 
and  Secure  Shell  (SSH)  for  remote  access. 
Already  widely  used  in  wireless  LANs, 
802.  IX  authentication  can  enforce  access 
through  essentially  any  device  —  includ¬ 
ing  wiring  closet  switches. 

Extreme  demonstrated  basic  port-based 
802.  IX  authentication  along  with  more  ex¬ 
tensive  “network  logon”  features. With  port- 
based  authentication,  the  S400  granted 
access  to  any  user  that  requested  authen¬ 
tication  on  a  given  port  (provided  that 
user’s  credentials  existed  on  an  authenti¬ 
cation  server). 

For  MAC-based  authentication  to  hap¬ 
pen,  a  user’s  request  had  to  originate  not 
only  from  a  given  port,  but  also  from 
a  given  MAC  address.  This  safeguard  pre¬ 
vents  gaming  or  other  cases  of  unautho¬ 
rized  access  where  a  user  might  attach  a 
hub  and  multiple  devices  to  a  switch  port. 

The  final  authentication  feature  we  test¬ 
ed  was  a  captive-portal  mode.  Here,  the 
switch  intercepts  any  URL  headed  for  a 
server  on  the  internal  network.  If  the  user 
hasn’t  yet  been  authenticated,  the  S400 
performs  “URL  hijacking”  by  returning  a 
logon  screen  to  the  user.  If  the  user’s  cre¬ 
dentials  check  out,  only  then  will  the  S400 
return  the  URL  the  user  requested.  The 
S400  handled  all  authentication  modes 
with  no  problems. 

When  it  comes  to  secure  remote  access 
for  management,  the  S400  is  a  standout. 
The  device  supports  SSH  Version  2  only, 
and  not  the  vulnerable  first  version  of  the 
SSH  protocol.  Furthermore,  enabling  SSH 
disables  unsecure  access  methods  such 
as  telnet  or  HTTP  We  also  checked  the 
S400’s  version  of  SSH  against  multiple 
databases  of  security  vulnerabilities.  SSH 
support  on  the  S400  had  no  known  vul¬ 
nerabilities  at  press  time. 


Measuring  delay 

Delay  measurements  for  the  Extreme  Networks’  S400-48t  were  low 
and  constant  across  all  our  tests.  Even  the  highest  maximum  delay 
number  we  observed  — 104.4  microsec  when  moving  jumbo  frames 
—  would  not  have  an  appreciable  effect  on  application  performance. 
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Even  considering  the  relatively  minor 
issue  of  jumbo  handling  on  gigabit  links, 
the  S400  continues  Extreme’s  tradition  of 
building  high-performance  Ethernet 
switches.  The  switch’s  high  port  density, 
rich  feature  set  and  good  performance 
make  it  a  strong  candidate  for  network 
managers  looking  to  add  more  capacity  to 
their  wiring  closets. 

Newman,  a  Network  World  Test  Alliance 
partner,  is  president  of  Network  Test  in 
Westlake  Village,  Calif.  He  can  be  reached  at 
dnewman@networktest.  com. 
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How  We  Did  It 


We  assessed  Extreme  Networks'  S400  in  terms  of  its  performance,  security, 
and  features.  (Access  the  complete  methodology  at  www.nwfusion.com, 
DocFinder:  3637.) 

We  measured  the  device’s  10G  Ethernet  and  Gigabit  Ethernet  baseline  perfor¬ 
mance;  performance  with  maximum  access  control  lists  (ACL)  enabled;  and 
performance  with  Rapid  Spanning  Tree  (RST)  bridging.  We  also  verified  the 
switch's  802. IX  authentication  features. 

For  the  10G  Ethernet  baseline  tests,  we  offered  traffic  from  the  Spirent  Commu¬ 
nications  SmartBits  traffic  generator/analyzer  in  a  partial  mesh  topology  to  one 
10G  Ethernet  interface  on  the  core  (uplink)  side  of  the  switch  and  10G  Ethernet 
interfaces  on  the  edge  (downlink)  side  of  the  switched.  In  separate  test  runs,  we 
offered  64-,  256-,  1,518-,  and  9,000-byte  frames.  We  measured  throughput  (the  high¬ 
est  rate  the  device  could  forward  traffic  with  zero  loss);  average  and  maximum 
delay  (the  amount  of  time  the  switch  held  up  frames  in  flight);  and  jitter  (the 
amount  of  variation  between  delay  measurements). 

We  used  64-  and  1,518-byte  frames  because  they  are  the  minimum  and  maximum 
frame  lengths,  respectively,  in  standard  Ethernet.  The  256-byte  frame  size  approxi¬ 
mates  the  average  frame  length  of  200  to  300  bytes  as  observed  on  Internet  back¬ 
bone  links.  The  9,000-byte  size  is  a  jumbo  frame;  while  it  is  not  standard  Ethernet, 
this  size  is  best  for  bulk  data  transfer,  and  it  is  widely  supported  by  makers  of  giga¬ 
bit  and  10G  Ethernet  devices, 

Because  the  S400  has  two  10G  Ethernet  interfaces,  we  repeated  this  test  in  a  con¬ 
figuration  with  20  Gigabit  Ethernet  edge  interfaces  and  two  10G  Ethernet  interfaces. 

In  the  Gigabit  Ethernet  baselines,  we  offered  traffic  to  all  48  Gigabit  Ethernet 
edge  interfaces.  In  this  test,  we  configured  the  SmartBits  to  use  a  fully  meshed 
pattern,  meaning  frames  offered  to  each  interface  were  destined  for  all  other 
interfaces.  We  used  the  same  metrics  of  throughput,  delay  and  jitter  as  in  the  10G 
Ethernet  baselines. 

For  the  throughput  tests,  the  goal  was  to  find  the  maximum  rate  the  switch  would 
forward  with  zero  loss.  In  the  delay  tests,  we  offered  traffic  at  10%  of  line  rate. 

In  the  maximum-ACL  test,  we  offered  the  same  traffic  as  in  the  Gigabit  Ethernet 
baselines.  This  time,  however,  Extreme  configured  the  S400  with  the  maximum 
number  of  ACLs  supported  —  in  this  case,  124  entries  on  all  50  interfaces.  The  first 
123  entries  were  to  drop  traffic,  and  a  final  entry  permitted  all  other  traffic.  Before 
running  the  performance  test,  we  spot-checked  the  “drop”  cases  to  verify  the 
ACLs  were  working, 

To  test  802.1w  RST  Protocol,  we  set  up  a  spanning  tree  between  two  S400 
switches.  We  configured  SmartBits  to  offer  one  unidirectional  stream  of  64-byte 
frames  at  a  rate  of  1  million  frames  per  second.  At  least  10  seconds  into  the  test, 
we  physically  disconnected  the  active  link,  forcing  the  spanning  tree  to  fail  over  to 
the  interface  that  previously  was  in  blocking  mode.  We  derived  failover  time  from 
packet  loss;  with  an  offered  rate  of  1  million  frame/sec,  each  dropped  packet 
meant  1  microsec  of  failover  time. 

For  the  802. IX  authentication  tests,  we  connected  client  and  server  through  the 
switch,  with  the  switch  acting  as  authenticator.  We  verified  the  ability  to  gain 
access  to  network  resources  using  various  modes,  including  port-based  (the 
switch  granted  access  because  the  client  was  on  a  particular  port):  media  access 
control  address-based  (the  client  was  on  a  particular  port  and  had  a  particular 
MAC  address);  and  Web-based  (the  switch  intercepted  URLs  and  replaced  it  with 
one  of  its  own  until  the  user  authenticated). 

For  the  authentication  tests,  the  authentication  server  ran  Windows  2000 
Advanced  Server  and  provided  Active  Directory,  Dynamic  Host  Configuration 
Protocol,  DNS  and  RADIUS  services.  The  client  ran  Windows  XP  Service  Pack  1 
and  Internet  Explorer  6.  We  configured  server  and  client  to  authenticate  using 
Extensible  Authentication  Protocol/Transport  Layer  Security. 


Executive  enforcers 


■  LEGISLATIVE  MANDATES 

Regulation:  Gramm-Leach- 
Bliley  Act  (also  referred  to  as 
the  Financial  Modernization 


Act  of  1999). 


Chief  compliance  officers  ensure  corporations  toe  the  line. 


■  BY  STACEY  COWLEY 

The  wave  of  accounting  scandals  that  swept 
through  corporate  America  a  few  years  ago  and 
the  resulting  Sarbanes-Oxley  Act  have  intensified 
the  pressure  on  businesses  to  keep  their  books  and 
conduct  clean.  As  companies  work  to  develop 
more-stringent  corporate  controls,  an  increasing 
number  of  them  are  adding  chief  compliance  offi¬ 
cers  to  their  executive  suite. 

Compliance  officers  tend  to  have  legal  or  financial  backgrounds 
and  rarely  come  from  IT.  But  IT  directors  should  know  about  the 
position  because  in  many  cases  they’ll  have  frequent  interaction 
with  the  person  who  holds  the  compliance  officer  post. 

Cheryl  Wagonhurst,  who  joined  Tenet  Healthcare  in  Santa  Barb¬ 
ara,  Calif.,  last  year  as  its  chief  compliance  officer,  includes  IT  rep¬ 
resentatives  in  the  group  of  about  a  dozen  company  executives 
who  work  together  on  compliance  initiatives. 

“Our  compliance  is  very  systems-based.  That’s  the  key  to  making 
sure  that  the  channels  of  communication  are  open, and  IT  has  played 
a  key  part  of  developing  those  systems,”  she  says.“They’ve  designed 
database  systems  for  us  and  put  in  place  other  processes  that  allow 
us  to  better  communicate  the  information  we  need  to  track.” 

The  compliance  officer  job  description  isn’t  entirely  new:  Firms 
in  heavily  regulated  industries,  including  financial  services  and 
pharmaceuticals,  have  long  needed  executives  to  enact  and  en¬ 
force  compliance  policies.  But  companies  that  previously  distrib¬ 
uted  compliance  duties  among  executives  in  several  departments 
now  assign  those  responsibilities  to  a  dedicated  executive. 

“This  is  a  division  of  labor.  Two  years  ago,  you  wouldn’t  have 
found  many  of  these  people  anywhere,”  says  Steve  Mader,  CEO  of 
executive  search  firm  Christian  &  Timbers  in  Boston. “We’ve  been 
approached  at  least  a  dozen  times  over  the  last  year.” 

Filling  the  position  isn’t  easy  or  inexpensive.  Chief  compliance 
offers  usually  report  directly  to  a  company’s  CEO  or  board  and 
need  years  of  expertise.  For  larger  organizations,  salaries  start  at 
about  $250,000  and  can  climb  into  the  high  six  figures,  Mader  says. 
Candidates  tend  to  come  from  financial  or  legal  backgrounds. 

The  job  can  vary  widely  from  company  to  company  as  busi¬ 
nesses  tailor  the  position  to  their  specific  needs.  At  a  healthcare 
organization,  navigating  the  intricacies  of  the  Health  Insurance 
Portability  and  Accountability  Act  (H1PAA)  might  be  the  officer’s 
top  priority.  At  a  company  recently  caught  breaking  laws,  adding 
and  checking  financial  control  mechanisms  might  be  the  first  task. 

Computer  Associates,  which  is  rebuilding  after  an  accounting 
fraud  decimated  its  management  ranks,  says  it  is  recruiting  for  the 
newly  created  position.  And  in  at  least  one  scandal-scarred  indus¬ 
try,  having  a  chief  compliance  officer  is  now  compulsory.  A  new 
Securities  and  Exchange  Commission  rule  requires  mutual  funds 
to  have  chief  compliance  officers  installed  by  early  October. 

Mortgage  financier  Freddie  Mac  in  McLean, Va.,  recently  decided 


to  create  a  chief  compliance  officer  role.  “We  had  historically 
asked  a  variety  of  people  in  control  functions  and  business  func¬ 
tions  to  assume  compliance-related  responsibilities,  and  it 
seemed  appropriate  to  bring  all  that  together,”  says  Jerry  Weiss, 
who  took  on  the  position  in  October.  He  previously  spent  10  years 
at  Merrill  Lynch’s  fund  management  division,  where  he  ultimately 
served  as  the  group’s  global  head  of  compliance. 

Weiss’  first  priority  was  to  assess  Freddie  Mac’s  compliance  cul¬ 
ture  and  to  conduct  a  legal  and  regulatory  gap  analysis.  While  his 
most  direct  day-to-day  work  is  done  with  the  front-line  managers 
of  Freddie  Mac’s  various  businesses,  his  office  coordinates  with 
several  other  departments,  including  legal,  finance,  operational 
risk  management,  and  information  systems  and  services. 

Weiss  is  collaborating  with  Freddie  Mac’s  IS  group  to  develop 
Web-based  training  on  compliance  and  business  ethics  for  man¬ 
agers.  He  also  has  partnered  with  Freddie  Mac’s  IS  team  to  create 
monitoring  and  surveillance  tools  to  ensure  the  company’s  invest¬ 
ment  securities  are  traded  in  a  manner  consistent  with  regulatory 
guidelines. 

“We  view  IS  as  a  key  partner  in  allowing  us  to  first  develop  a 
vision  for  our  compliance  program,  and  ultimately  implement 
and  execute  it,”Weiss  says. 

But  not  all  companies  have  their  IT  and  compliance  strategies 
aligned.  A  recent  Meta  Group  report  found  that  CIOs  are  rarely 
involved  in  the  final  decision-making  stages  of  developing  compli¬ 
ance-solution  processes.With  compliance  budgets  rising  quickly  — 
half  the  companies  surveyed  without  a  fund  for  compliance  initia¬ 
tives  intend  to  create  one  within  the  next  12  months  —  CIO  involve¬ 
ment  in  planning  is  particularly  critical,  Meta  says. 

Terri  Curran,  a  longtime  IT  consultant,  sees  compliance  duties 
seeping  into  the  list  of  tasks  falling  to  IT  strategists,  particularly  at 
smaller  organizations  where  executives  wear  multiple  hats. 

Tenet  Healthcare’s  chief  privacy  officer,  Connie  Emery  found  her 
career  path  shifting  along  those  lines  as  the  company’s  compli¬ 
ance  responsibilities  increased.  Initially  Tenet’s  security  officer, she 
took  on  the  privacy  role  as  regulatory  requirements  such  as 
HIPAA  linked  the  functions.“It’s  hard  to  separate  the  two. You  can’t 
have  privacy  without  security  she  says. 

HIPAA,  Sarbanes-Oxley  and  a  California  data-security  law 
known  as  SB  1386  have  pushed  Tenet  to  scrutinize  its  entire  data 
infrastructure.  “We  had  to  inventory  all  of  our  systems.  We  have 
over  1,300  clinical  applications.  Initially  the  difficulty  was  just  in 
getting  the  inventory  completed,”  says  Emery,  who  collaborates 
with  Wagonhurst’s  office.  “Then  we  did  risk  analysis  to  identify 
areas  to  address.  There  were  some  issues  with  access  controls. 
We’re  putting  corrective  action  in  place  and  making  progress  on 
our  remediation  plans.” 

As  companies  sort  out  their  internal  tangles  and  keep  their  exec¬ 
utives  from  running  afoul  of  new  laws,  expect  a  growing  number 
to  install  compliance  officials.  Adding  the  position  is  one  way  for 
boards  and  CEOs,  who  now  have  to  personally  sign  on  the  dotted 
line  to  vouch  for  their  organization’s  good  corporate  conduct,  to 
assuage  nightmares  about  hatching  the  next  Enron. 

Cowley  is  a  correspondent  with  the  IDG  News  Service.  She  can 
be  reached  at  stacy_cowley@idg.com. 


Applies  to:  Financial  institutions, 
such  as  banks  and  securities  firms, 
and  related  businesses,  such  as 
lenders  and  financial  counselors, 
that  have  access  to  protected 
information. 

Deadline:  Most  provisions  took 
effect  in  2001. 

What  it  means  to  IT: 

Organizations  must  enact  safe¬ 
guards  to  protect  consumers' 
financial  data. Technology  is  critical 
for  enforcing  provisions  such  as 
the  act's  opt-out  rules,  which  let  a 
customer  prevent  financial  institu¬ 
tions  they  do  business  with  from 
sharing  their  data  with  businesses 
not  affiliated  with  the  customer. 


Regulation:  Health  Insurance 
Portability  and  Accountability 
Act  (HIPAA) 

Applies  to:  Healthcare  providers 
and  related  businesses  that 
receive  protected  information. 

Deadline:  The  first  set  was  issued 
in  2002,  but  more  are  coming.  April 
21,  2005,  is  a  major  deadline  for 
compliance  with  the  other  security 
regulations. 

What  it  means  to  IT:  Companies 
already  have  had  to  meet  HIPAA 
deadlines  for  complying  with  priva¬ 
cy  rules,  so  most  affected  organi¬ 
zations  already  have  the  outlines  of 
their  HIPAA  strategies  worked  out. 
The  2005  deadline  relates  to  pro¬ 
tection  of  electronic  information; 
CIOs  and  CTOs  will  be  intricately 
involved  in  ensuring  their  compa¬ 
nies  have  systems  and  controlled 
processes  in  place  for  handling 
sensitive  data. 


Regulation:  Sarbanes-Oxley  Act 

Applies  to:  U.S.  publicly  traded 
companies. 

Deadline:  Staggered.  The  looming 
one  is  compliance  with  Section  404, 
which  requires  companies  to  report 
on  their  internal  financial  controls. 
Rolled  back  several  times,  the 
Section  404  deadline  is  now  set  for 
Nov.  15  for  the  first  wave  of  affect¬ 
ed  companies,  those  with  a  public 
float  of  at  least  $75  million. 

What  it  means  to  IT:  The  act 

requires  deep  visibility  into  compa¬ 
nies'  finances,  controls,  operations 
and  processes.  For  some  compa¬ 
nies,  gaining  that  visibility  will 
require  implementing  entirely  new 
systems.  For  most,  it  means  a  thor¬ 
ough  examination  and  update  of 
those  already  in  place,  a  process 
requiring  collaboration  between  IT 
and  other  corporate  departments. 
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/  set  up  the  appliance  in  just  a  few 
minutes  and  it  found  all  my  errors. 
Now  DNS  and  DHCP  are  so  simple 
and  secure.  I  just  love  it ! 


$S>ON/s 


Cortiputing 


Editor's 

Choice 


BlueCat  Networks 


simple,  secure  and  affordable  appliances 


Call  us: 

1.866.895.6931 


Schedule  your  free  demo  today. 

Visit  www.bluecatnetworks.com/adonis/nww 


Adonis  DNS/DHCP  Appliance 
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BlueCat  Networks,  the  BlueCat  Networks  logo,  Adonis  DNS/DHCP  Appliance.  XHA  and  the  Adonis  logo  are  trademarks  of  BlueCat  Networks,  Inc. 
Active  Directory  is  a  registered  trademark  of  Microsoft  Corporation. 
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How  much  can  your  network  analyzer  see? 


Observer  is  the  only  fully  distributed  network  analyzer  built  to 
monitor  the  entire  network  (LAN,  802.1 1  a/b/g,  Gigabit,  WAN). 
Download  your  free  Observer  10  evaluation  today  and  experience 
more  comprehensive  real-time  statistics,  more  expert  events, and 
more  in-depth  analysis  letting  you  dive  deeper  into  your  network 
than  ever  before.  Choose  Observer. 


-  DRflGER-  Guard  against  the  latest  network  threats  by  identifying 
and  isolating  infected  systems  automatically. 


-  DRTR  Mini  nG-  Analyze  gigabit  traffic  and  massive  amounts 
of  data  with  Observer's  expanded  options  for  data  mining. 


-JUnK  TRRFFlC-  Identify  broadcast  storms,  monitor  excessive 
traffic,  and  optimize  bandwidth  with  Observer's  many  utilization 
metrics  and  over  30  real-time  statistics. 


US  &  Canada  toll  free  800.526.5958 
fax  952.932.9545 


UK  &  Europe  +44(0)  1959569880 


www.networkinstruments.com/analyze 


UltraMatrix  Remote 

REMOTE  MULTIPLE  USER 
KVM  MATRIX  SWITCH 
ACCESS  OVER  IP  OR  LOCALLY 


UltraConsole 

PROFESSIONAL  SINGLE-USER 
KVM  SWITCH  SUPPORTS  UP 
TO  1000  COMPUTERS 


Connects  1,000  computers  to  multiple  user  stations 
over  IP  or  locally 

High  quality  video  up  to  1280  x  1024 
Scaling,  scrolling,  and  auto-size  features 
Secure  encrypted  operation  with  login  and  computer 
access  control 

Advanced  visual  interface  (AVI) 

No  need  to  power  down  servers  to  install 
Free  lifetime  upgrade  of  firmware 
Available  in  several  models 
Easy  to  expand 


•  Connects  up  to  1000  computers  to  a  KVM  station 

•  Models  for  4,  8,16  computers 

•  Advanced  visual  interface  (AVI) 

•  Compatible  with  Windows,  Linux,  Solaris,  and  other  O/S 

•  Connects  to  PS/2,  Sun,  USB,  or  serial  devices 

•  Converts  RS232  serial  to  VGA  and  PS/2  keyboard 

•  Free  lifetime  upgrade  of  firmware 

•  Security  features  prevent  unauthorized  access 

•  Full  emulation  of  keyboard  and  mouse  functions  for  automatic, 
simultaneous  booting 

•  Easy  to  expand  _ 

nrici 


KVM  RACK  DRAWER  WITH  KVM  SWITCH  OPTION 


800  333  9343 

WWW.ROSE.COM 


ELECTRONICS 


SERVERS  WITHIN  YOUR  REACH 
FROM  ANYWHERE 


A  KVM  switch  allows  single  or  multiple 
workstations  to  have  local  or  remote  access  to 
multiple  computers  located  in  server  rooms  or 
on  the  desktop  regardless  of  their  platforms 
and  operating  systems.  KVM  switches  have 
traditionally  provided  cost  savings  in  reducing 
energy  and  equipment  costs  while  freeing  up 
valuable  real  estate. 


Recognized  as  the  pioneer  of  KVM  switch 
technology.  Rose  Electronics  offers  the 
industry's  most  comprehensive  range  of 
server  management  products  such  as  KVM 
switches,  extenders. and  remote  access 
solutions.  Rose  Electronics  products  are 
known  for  their  quality,  scalability,  ease  of  use 
and  innovative  technology. 


Rose  Electronics  is  privately  held  with  worid- 
headquarters  in  Houston,  Texas  and  sell's  its 
products  worldwide  through  a  large  network  of 
Resellers  and  Distributors.  Rose  has 
operations  in  the  United  Kingdom,  Spain, 
Germany,  Benelux,  Singapore  and  Australia. 


toSe"  Electronics 
,‘t|70V.  .StailCliff 'Road , 
■n,  Texas  77099 


+281  933  7673 
+44(0)  1264  850574 
•+  •  +65  6324  2322 
LIA'  +617  3388  1540 
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Cost-Effective  Console  Switfi 


Intelligent  Serial  Port  twitch  with 
Internal  Modem 


Internal  33.6  Kbps  Modem 
Secure  Dialback  Feature 
Password  Protection 
Invalid  Access  Lockdown 
Periodic  Modem  “AT”  Refresh 
Seven  RS232  DB-9  Console  Ports 
Any-to-Any  Port  Switching 
Non-Connect  Port  Buffering 
Data  Rate  Conversion  300  to  115K  bps 
AC  and-48  DC  Power  Options 
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The  APS-8M  Asynchronous  Port  Switch  is  a  cost 
effective  Terminal  Server  alternative,  plus  you  get  an  internal  modem 
which  saves  rack  and  cabling  hassles.  Connect  multiple  devices  for  on-site 
and/or  dial-up  remote  communications.  High  data  throughput,  full  modem 
and  data  flow  control  all  add  up  to  make  the  APS-8M  the  perfect  data  switch 
or  today’s  remote  network  management  applications. 


www.wti.com 


(800)  854-7226 


western  telematic  incorporated 

5  Sterling  •  Irvine  •  California  92618-2517 


Celebrating  our  40th 
Year  in  DataCom 


“Keeping  the  Net...Workingl” 


Production  Tracking  Over  Ethernet 

Eliminate  your  shop-floor 
PCs  with ... 

Ethernet  Terminals  from 
ComputerWise  connected  to 
your  in-house  LAN. 

Capture  production  data 
directly  into  files  on  your 
server. 

Features  C  Benefits 

•  Interactive  Telnet  Client 

•  TCP/IP  over  10/IOOBaseT  Ethernet 

•  Built-in  Barcode  Badge  Reader 

•  Optional  Mag-Stripe  &  RFID  Badge  Reader 

•  Auxiliary  RS-232  Serial  port 

•  Customizable  Data  Collection 
Program  Included 

•  Larger  keyboard  and 
display  sizes  available 

COM  PI  TKRWISE. 

Gall  1-800-255-3739  or  visit  www.computerwise.Gom 
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THE  LAB  FOR  DATA  RECOVERY 


SERVERS 


ENTERPRISE 


:  S4 1 

S/04 


NetworkWorld 

THE  HUB  OF  THE  NETWORK  BUY 


? 


In  today's  demanding  data  center  environment,  no 
one  knows  how  to  protect  and  organize  your 
valuable  IT  equipment  better  than  Rittal.  Our 
TS-server  cabinets  securely  accommodate  the  dense 
mounting  of  virtually  any  kind  of  server,  networks  or 
mass  storage  devices.  Maybe  that's  why  so  many 
leading  companies  around  the  world  count  on 
Rittal  for  their  network  infrastructure  needs. 


CHECK  OUT  THE 
TEAM  RITTAL  WEBSITE 
AND  REGISTER  TO  WIN! 

Use  priority  code:  NWW 


Grand  Prize: 

•  Complete  Home  Entertainment  System 

Weekly  Drawings: 

•  Louisville  Slugger  Bats 

•  Team  Rittal  Baseball  Hats 


www.rittal-corp.com/teamrittal 


How  Do  You 
Distribute 

20,000  Watts  in 

Your  Cabinet? 

Sentry  CDU  Cabinet  Power  Distribution 

High-density  Equipment  Cabient  Power  Distribution  « 

84-Outlet  Receptacles  « 

20,000  Watt  3-Phase  Power  Distribution  Model 

10,000  Watt  208  VAC  Power  Distribution  Model 

True  RMS  Power  Monitoring  per  Branch  Circuit « 
Local:  Digitial  Displays,  Remote:  via  Interface 

Input  Power  Monitoring  Facilitates  Load  Balancing 

Web  Interface  « 

SNMP,  MIB  &  Traps  « 

Integrated  Temperature  &  Humidity  Probes  « 

Color-coded  Outlets  by  Branch  Circuit/Electrical 
Phase  for  Easy  Identification 

Center  Rail  "Notch”  for  Simplifying  Cabinet  Installation 


©Server  Technology,  Inc.  Sentry  is  a  trademark  of  Server  Technology,  Inc, 


Server 
Technology 

Solutions  for  the  Data  Center  Equipment  Cabinet 


Power  demands  from 
today's  new  servers  require 
greater  power  distribution 
in  the  equipment  cabinet. 
The  Sentry  CDU  distributes 
power  for  up  to  42  dual¬ 
power  1 U  servers  in  one 
enclosure.  Single-phase  or 
3-phase  input  with  110  VAC, 
208  VAC  or  mixed  110/208 
VAC  single-phase  outlet 
receptacles. 
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Server  Technology,  Inc. 

1040  Sandhill  Drive 
Reno,  NV  89521  -USA 

toll  free  +1.800,835.1515 

tel +1.775.284.2000 
fax +1.775.284.2065 
www.servert-  i.eom 
sales@servertech.com 
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technologies,  inc 


WWW.  RECURRENT -COM 


Reading  someone 
else's  issue  of 

NetworkWorld? 

Subscribe  today  and  receive  your  own 
1-year  subscription  for  FREE  — 

a  $129.00  value! 

Go  to  http://subscribenw.com/mynw  for  your  free  subscription. 


Attention  Resellers! 


SECUREMATICS 

The  Right  decision  for  Security  Products 

Best  Source  for  SOHICWAtT 
Security  Products! 


r 


LIMITED  TIME  OFFER! 

•  Earn  1  FREE  SonicU  e*Tralnlng 
Class  for  every  $15K  in  SonicWALL 
purchases  from  Securematlcs." 

•  New  SonicWALL  Resellers  will  receive  1  FREE 
SonicU  Electronic  Training  Course  with  purchase 
of  any  Demo  Unit 


Securematics  is  a  SonicWALL  Authorized  Distributor  &  Training  Partner 
To  sign  up  for  the  Medallion  Partner  Program,  please  contact  us. 

Cali  -  888-746-6700  sales@securematics.com  www.securematics.com 
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GBics/cables/Parts 

Also  Available:  Extreme,  Adtran 

In  Stock  •  Fast  Delivery  •  No  Expedite  Charges 


COMSTAR,  INC. 

The  #1  Network  Remarketer 

952*835*5502 

Fax  952*835*1927  www.comstarinc.com 
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Climate  Monitor 

$389 


Ethernet/Web 

Temperature 
Air  Flow 
Humidity 
Door  position 
Sound 
Light  Level 
Power 

Video  optional 
16  external  sensors 


Rack  Mounted 

Monitor  Multiple  Cabinets 

HTML  (no  client  needed) 
SMTP  (e-mail  alerts) 
SNMP  (MIB,  Traps) 
Graphing 
Console 


O  IT  Watchdogs 

See  it  working  at:  www.ITWatchdogs.com 

http://63.237.104.17  512-257-1462 


Advertising  Supplement 

IT  Careers  in  E-Business 


Remember  when  the  question  was  whether  e- 
business  would  ever  result  in  real  dollars  being 
earned  by  anyone?  The  question  has  been  answered 
as  industries  have  turned  the  Internet  into  a  tool  that 
is  increasing  revenue  numbers. 

Amazon.com  and  eBay  have  reported  significant 
revenue  and  profit  growth.  Second  quarter  sales  for 
Amazon.com  were  up  26%  compared  to  a  year  ago, 
while  eBay  reported  a  quarterly  revenue  increase  of 
52%.  The  third  and  fourth  quarters  of  2004, 
traditionally  best  quarters  for  both  entities,  promise 
to  continue  the  trend. 

In  addition,  both  have  purchased  international 
market  share.  EBay  has  completed  the  acquisition 
of  Baazee.com,  adding  17  million  users  in  India 
to  its  presence.  Amazon.com  has  announced  the 
acquisition  of  Joyo  LLT,  and  its  access  to  80  million 
customers  in  China. 

A  cadre  of  other  businesses  using  e-business 
technologies  joins  the  traditional  e-tailers.  Airlines 
are  driving  down  overhead  costs  by  turning  to  online 
sales  of  tickets,  while  some  traditional  brick  and 
mortar  retailers  are  combining  in-store,  catalog  and 
online  technologies  to  bring  in  customers. 


In  addition,  all  retailers  are  turning  to  the  use  of  radio 
frequency  identification  (RFID)  to  improve  operations 
supporting  those  sales.  IDC,  the  research  arm  of  IDG, 
estimates  that  RFID  expenditures  will  top  $1 .3  billion 
by  2008,  when  the  one-time  surge  will  return 
to  earth. 

Given  all  the  good  news,  the  priority  question  is  what 
this  means  to  IT  professionals.  The  growth  shows  in 
a  slow,  but  steady  increase  in  jobs  as  well. 

Both  Amazon  and  eBay  list  a  variety  of  jobs  currently 
open  with  the  vast  majority  in  software  development, 
and  analysis.  Amazon  is  shifting  approximately  40 
software  development  jobs  to  its  new  Software 
Development  Centre  in  Scotland  during  the  second 
half  the  year,  but  will  maintain  staffing  in  San  Jose  as 
well.  EBay  similarly  has  job  postings  in  IT,  to  include 
software  engineering  and  systems.  The  requirement 
for  knowing  customers  and  individualizing 
market  to  specific  niche  groups  has  created 
additional  information  technology  requirements  and 
staffing  needs.  This  category  includes  data 
storage/management/mining,  customer  relationship 
management  and  self-service  capabilities.  What  you 
don't  see  are  core  jobs  in  web  development,  but 
rather  jobs  that  span  the  operation  to  provide 


solutions  to  the  primary  question  -  how  to  sell  to  an 
increasingly  picky  customer. 


For  more  information  about  IT  Careers  advertising, 

please  contact:  Nancy  Percival 

Vice  President,  Recruitment  Advertising 

800.762.2977 

500  Old  Connecticut  Path 

Framingham,  MA  01701 

Produced  by  Carole  R.  Hedden 


NEED  TO 
HIRE  FAST? 
START  HERE 
FIRST! 

IT  Careers  and 
itcareers.com  reach 
more  than  2/3  of  all  US 
IT  professionals  every 
week. 

Check  us  out  at: 
www.itcareers.com  or 
call  (800)  762-2977 


IT  PROFESSIONALS 
Manager 

(Glen  Mills,  PA  and  other  locations  throughout  the  United  States). 
Responsible  for  the  design,  architecture  and  implementation  of  payment 
systems  with  primary  focus  on  card  processing  and  authorization  sys¬ 
tems,  as  well  as  back-end  clearing  and  settlement  systems.  Implement 
architecture  design  involving  intra/inter-enterprise  integration,  back-end 
integration,  batch  processes,  data  conversion  for  high  performance  scal¬ 
able  systems  and  adaptors  implementations  using  tools  included  in  pay¬ 
ment  system  applications.  Utilize  Ab  Initio  data  processing  platform  for 
batch  data  processing  and  complete  meta  data  management  across  the 
enterprise.  Utilize  Enterprise  Integration  middleware  tools  (MQ  Series  or 
WebMethods)  with  build-in  adaptors  to  submit  data  to  various  c-tree  data¬ 
base.  Utilize  IBM  Tivoli  for  system  resource  monitoring  and  Thales  Hard¬ 
ware  security  module  for  cryptographic  services.  Responsible  for  plan¬ 
ning  engagements  and  leading  teams  in  implementation  of  payment  sys¬ 
tems  based  on  established  industry  standards  (ISO  8583).  Responsible 
for  Managing  integration  and  testing  of  payment  systems  using  automat¬ 
ed  load  and  system  testing  tools  (Mercury  LoadRunner,  WinRunner). 

$100, 895/year.  Mon-Fri  9:00am-5:00pm.  The  minimum  requirements  are 
as  follows:  Bachelor's  degree  or  equivalent  in  Computer  Science,  Engin¬ 
eering  (any),  Management  (any),  or  Business  Administration  plus  5  years 
of  experience  in  the  job  offered  or  5  years  of  experience  as  an  Analyst, 
Associate,  Consultant,  Senior  Consultant  or  Programmer.  Employer  will 
regard  a  foreign  degree  to  be  equivalent  to  a  U.S.  Bachelor's  degree  as 
determined  by  an  accredited  credentials  evaluation  service.  Related 
experience  must  include  at  least  two  years  experience  utilizing  Card 
Processing  &  authorization  systems,  Back-end  clearing  and  settlement 
systems,  Programming  Languages  (C++,  Java),  c-Tree  database, 
Mercury  Load  Runner,  and  Thales  Hardware  security  module  for  crypto¬ 
graphic  services. 

Please  send  your  resume,  referencing  Job  Order  Number  WEB450022  to 
the:  PA  CareerLink,  FLC  Unit,  235  W.  Chelten  Avenue,  Philadelphia,  PA 
19144.  EOE. 


Computers-Software  Engineers 
needed.  Seeking  qua),  candi¬ 
dates  possessing  MS  or  equiv. 
and/or  rel.  work  exp.  Part  of  the 
req.  rel.  exp.  must  include  2  yrs. 
working  with  C/C++,  TCP/IP  and 
Linux  Kernel.  Duties  include: 
Develop,  design  and  test  Mobile 
VPN,  IPSEC,  IP  Layers  modules 
and  TCP/IP  protocol  device  dri¬ 
vers;  Integrate  FIPS  complaint 
security  software  and  hardware 
components  and  hardware  cryp¬ 
to  cards;  Work  with  C/C++,  Intel 
Assembly  and  Linux  Kernel. 
Fwd.  resume  &  ref.  to:  Ecutel 
Systems,  Inc.,  Attn:  HR,  2300 
Corporate  Park  Dr.,  #410, 
Herndon,  VA  20171. 


Database  Analyst.  Design, 
implement,  maintain  data¬ 
base,  web  pages,  software 
tools  and  documentation  for 
marketing  and  financial  soft¬ 
ware  applications.  Must  have 
Bachelor's  in  Information 
Systems,  Accounting  or  relat¬ 
ed,  1  yr.  exp.  and  knowledge 
of  Microsoft  SQL  database 
programming,  ASP  program¬ 
ming,  C,  Visual  Basic,  HTML 
and  Java  programming.  Send 
resume  to  Infinity  Investments 
Inc.,  Attn:  Jim  Balvanz,  373 
Collins  Rd.  NE,  Cedar 
Rapids.  IA  52402. _ 


Chief  Information  Officer  position  in 
large  multi-platform  data  center  responsi¬ 
ble  for  providing  leadership  to  high  perfor¬ 
mance  management  team  in  complex 
social  services  agency. 

Represents  agency  in  meetings  with  fed¬ 
eral,  state  and  legislative  officials. 
Requires  current  technical  experience 
and  demonstrated  expertise  supporting 
IBM  ES9000  MVS/ESA/IMS/DB2, 

UNISYS  A1 9  MCP/  DMSII, 
AlX/Unix/Oracle,  and  LAN/Novell. 
Experience  with  internet  applications 
design  and  development,  desired 
Background  and  experience  with  federal 
oversight  agencies  is  highly  desirable. 
Demonstrated  success  in  public  adminis¬ 
tration  with  associated  regulatory  and 
state  oversight  entities  highly  desirable. 
Requires  interaction  with  stakeholders 
and  external  interested  parties  regarding 
complex,  highly  visible  projects. 
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CHILDREN 
&  FAMILIES 


I  Chief  Information  Officer 

Requires  effective  interaction  with  customers  and  developers  to 
ensure  the  successful  delivery  and  implementation  of  projects, 
updates  and  modifications  to  the  production  environment.  Must 
be  able  to  work  effectively  with  senior  departmental  managers 
as  well  as  executives  with  other  state  agencies  to  achieve 
smooth  and  timely  project  development  and  conversion  for 
clients.  Desire  strong  background  and  demonstrated  success  in 
deploying  productivity  tools  for  workforce  and  agency  process¬ 
es.  Responsible  for  charting  agency  strategic  direction  in 
client/server  and  distributed/decentralized  processing. 
Qualifications:  Excellent  organizational,  analytical,  writing  and 
public  speaking  skills  are  desired.  A  bachelor's  degree  from  an 
accredited  college  or  university  and  progressively  responsible 
leadership  experience  in  analytical  and/or  technical  data  pro¬ 
cessing  fields.  Prefer  experience  in  a  managerial  capacity  for  a 
medium  to  large  data  center.  Experience  as  described  above 
can  substitute  on  a  year-for-year  basis  for  the  required  college 
education. 

Submit  resume  and/or  State  of  Florida  employment  appli¬ 
cation  to:  Jo  Moore,  Department  of  Children  &  Families 
Technology  Centre,  1940  North  Monroe  Street,  Suite  80, 
Tallahassee,  Florida  32399-0710;  FAX  (850)  487-8173; 
Jo_Moore@DCF.State.FL.US  DEADLINE:  5  P.M., 

September  8,  2004.  EEO/AA  Employer/Veterans  Preference. 
Those  persons  who  require  special  accommodations  during  the 
selection  process,  should  call  Jo  Moore  at  (850)  487-8169. 


Senior  Business  Analyst. 
Harleysville  Insurance  Group, 
Harleysville,  PA  seeks  individ¬ 
ual  to  lead,  manage  &  imple¬ 
ment  projects  focused  on  re¬ 
engineering  processes  with 
focus  on  continued  improve¬ 
ment.  Qual.  apps.  must  have 
MS  in  CS,  Engineering  or 
quantitative  discipline  and 
prior  exp.  gathering  require¬ 
ments,  defining  process  im¬ 
provements  &  working  with 
end  users.  Submit  res.  to  HR 
Dept  resumes@imrlp.com. 


Principal  Software  Engineer:  Pri¬ 
mary  responsibility  for  the  devel¬ 
opment  of  networking  software. 
Responsible  for  functional  spec 
dev,  arch  design,  implementa¬ 
tion  and  verification.  MS  or  for¬ 
eign  equiv.  in  EE  or  CS  plus  5  yr. 
exp.  that  must  include  3  yr.  with 
one  or  more  network  protocols 
including  IP.  TCP.  ARP,  DHCP, 
DNS,  SNMP, and  firewall.  .  Must 
be  familiar  with  IP  QOS  proto¬ 
cols  and  RFCs.  Must  have  dev¬ 
elopment  exp.  with  Linux,  and  in 
C/C++.  Please  send  resume  to 
Ucentric  Systems,  2  Clock  Tow¬ 
er  Place,  Suite  550,  Maynard, 
MA  01754,  Attn  to  Pat  Riley. 


Programmer  Analysis  to  design, 
develop,  test,  implement  appls 
using  Siebel  tools,  C,  C++,  Java, 
ASP,  Oracle,  JavaScript,  VB¬ 
Script,  HTML,  JDK,  JDBC,  Visu¬ 
al  Basic,  etc  using  UNIX  and 
Windows  OS:  develop,  enhance 
components  of  new/existing 
appls  and  databases;  perform 
reqs  gathering,  analysis,  plan¬ 
ning,  testing,  implementation  & 
troubleshooting.  Require:  BS  or 
foreign  equiv  in  CS  or  Engg(any 
branch)  with  2  yr  exp  in  IT.  High 
salary.  F/T  position.  Travel 
involved.  Resume  to  HR, 
Smartsoft  International,  Inc., 
3965  Johns  Creek  Court, 
Suwanee,  GA  30024. 
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IT  PROFESSIONALS: 

POSITION:  Consultant  (Glen  Mills,  Pennsylvania  and  other  locations 
through  the  U.S.).  Develop  new  modules  for  the  systems  and  trained 
developers.  Provide  assistance  to  the  design,  architecture  and  configu¬ 
ration  management  teams  to  resolve  conflicts  within  the  system,  enhance 
the  application  infrastructure,  maintain  high  quality  standards  and  sustain 
stability  of  the  system.  Support  the  system  during  disaster  recovery  test¬ 
ing  and  expiration  weekends.  Monitor  application  stability  and  perform 
environment  maintenance  using  IBM  Web  Sphere  Application  Server  and 
Sun  ONE  Web  Server.  Assist  senior  designers  in  the  design  of  reporting 
screens  and  work  with  a  team  of  junior  developers  and  analyst  in  the 
development  of  these  reports  and  integration  into  the  system  using  Brio 
Reports.  Work  with  Java  and  Extensible  Markup  Language  (XML)  in 
developing  the  applications  front-end  using  Java  Server  Pages  (JSP's), 
Java  servlets,  Apache  Struts  framework,  and  control  structures  within  the 
Java  2  Platform,  Enterprise  Edition  (J2EE)  framework.  Use  IBM's 
WebSphere  Studio  Application  Developer  4.0  as  the  primary  development 
tool.  Work  on  the  UNIX  platform  to  develop  CORBA  components  as  the 
middleware  solution  to  connect  to  C++  servers.  Assist  in  the  enhance¬ 
ment  of  time  related  performance  by  modifying  Structured  Query 
Language's  (SQL's)  in  DB2. 

WAGE:  $74, 751. 70/year 

Hours:  Monday-Friday  9:00am-5:00pm 

MINIMUM  REQUIREMENTS: 

Bachelor's  degree  in  Computer  Science,  Business,  MIS,  or  Information 
Technology  +  1  year  exp.  in  the  job  offered  or  1  year  exp.  as  a  Consultant, 
Senior  Developer,  Senior  Systems  Analyst,  Systems  Analyst,  or  Junior 
Systems  Analyst.  Related  experience  must  include  at  least  one  year  of 
J2EE,  JSP,  and  Java  Servlets:  Apache  Struts  Framework;  IBM's 
WebSphere  Studio  Application  Developer  4.0  and  WebSphere  Application 
Server;  SQL  and  DB2;  XML;  and  UNIX  and  CORBA. 

Please  send  your  resume,  referencing  Job  Order  Number  WEB447883  to 
the:  PA  Careerlink,  FLC  Unit,  235  W  Chelten  Ave.,  Philadelphia,  PA 
19144.  EOE. 


Silicon  Laboratories  Inc.  is  hiring 
for  the  following  position:  Optical 
Networking  1C  Design  Engr  - 
Analog  &  digital  circuit  design  for 
high-speed  commun.  apps.  Min 
req:  MSEE  +  3  yrs  exp  in  mixed- 
signal  1C  design.  Openings  in 
Nashua,  NH  and  Austin,  TX. 
Complete  job  description  at 
www.silabs.com/careers.  Send 
resume  to  jobs_er@silabs.com 
or  HR  Dept,  4635  Boston  Lane, 
Austin,  TX  78735.  NO  IN  PER¬ 
SON  APPLICATION. 


Sr.  Systems  Analysts  to  lead 
teams  to  analyze,  design,  devel¬ 
op,  test,  implement  appls  using 
Java,  C++,  VC++,  VB,  LabView, 
Matlab,  MathCAD,  Rational 
Rose,  OOAD/P,  UNIX  etc;  ana¬ 
lyze,  finalize  architecture  using 
RUP  process,  J2EE,  UML; 
administer,  deploy  components 
into  appl  server-Websphere;  de¬ 
velop  appls  as  per  ISO-9001, 
CMM  level  3  methodologies; 
provide  customer  support  & 
trouble-shoot.  Require:  Masters 
or  foreign  equiv.  in  CS/Engg. 
(any  branch)/Business  with  1  yrs 
exp.  Travel  Involved.  Comp. 
Salary.  F/T.  Resumes:  HR, 
Synergy  America,  Inc.,  6340 
Sugarloaf  Parkway,  Ste  140, 
Duluth,  GA  30097. 


Systems  Analyst/Administrator, 
McLean,  VA.  Designs,  develops, 
programs,  installs,  implements, 
conducts  research  for,  &  main¬ 
tains  Unix  systems,  servers  & 
hardware.  Duties  include  work¬ 
ing  with  Solaris,  Linux  &  other 
Unix  Os,  disaster  recovery  & 
backup,  documentation,  trou¬ 
bleshooting,  security,  web  & 
application  servers,  SMTP, 
DNS,  shell  &  Perl  scripting. 
Bachelors  in  Comp.  Sc./Elec. 
Engr.  or  in  a  related  discipline  & 
minimum  2  yrs  related  experi¬ 
ence  requirecf.  Send  resume  to 
Boyer  Consulting  Group,  7918 
Jones  Branch  Dr.  Suite  600, 
McLean,  VA  22102. 


Sr.  Programmer  Analysts  to  lead 
teams  to  analyze,  design, 
develop  appls  using  OOP,  Java, 
JSP,  Servlets,  EJB,  XML,  HTML, 
JavaScript,  Weblogic,  JDBC, 
Oracle,  etc  in  UNIX,  Solaris, 
Windows  OSs;  develop  Oracle 
stored  procedures  and  data 
modeling;  implement  appls  and 
perform  strategic  planning/oper¬ 
ations  support;  provide  end 
user  training.  Require  BS  or  for¬ 
eign  equiv.  in  CS/Engg.  (any 
branch)  &  3  yrs  exp.  in  IT.  Comp 
salary,  F/T,  travel  involved. 
Resume  to  HR,  Ordusion 
Technologies,  Inc.,  3883  Rogers 
Bridge  Road,  Suite  504,  Duluth, 
GA  30097. 


Sr.  Programmer  Analysts: 
Analyze,  design,  develop,  test, 
implement,  software  apps.  for 
mortgage  loan  processing  in 
Loanquest  suite,  Centura, 
Oracle,  SQL  Server,  Crystal 
Reports  and  Microsoft  Legacy/ 
.NET.  BS  Comp.  Sc/Information 
Tech/related  field  &  5  years  exp., 
including  at  least  6  months  exp. 
in  job  offered.  Excellent  commu¬ 
nication  skills-verbal  &  written. 
Excellent  technical  peer  group 
to  work  with.  Travel  may  be 
required.  Send  Resume  to:  J. 
Norris,  Mortgageflex,  10151 
Deerwood  Park  Blvd.,  Bldg.  400, 
Ste.  350,  Jacksonville,  FL 
32256.  No  phone  calls  please. 


Database  Administrator. 
Bachelor's  Degree  in 
Computer  Science  or 
Engineering  and  2  years 
experience  required. 
Submit  resume  to  Delia 
Agustin,  11718  Bedford 
Street,  Houston,  TX 
77031. 


Database  Administrators  to  in¬ 
stall,  configure,  maintain  Oracle 
Appls  and  Oracle  Dev.  software; 
evaluate,  design  Oracle  data¬ 
base  structures/systems;  analy¬ 
ze  database  reqs  of  existing/new 
appls;  monitor,  tune  for  optimal 
performance,  backup/recovery 
strategy  planning,  troubleshoot 
problems;  maintain  security  of 
databases,  test,  apply  patches 
for  new  releases.  Require  BS  or 
foreign  equiv.  in  CS  or  Engg  (any 
branch)  with  2  yrs  exp  in  data¬ 
base  admin.  Comp,  salary. 
Travel  involved.  F/T  openings  in 
Elgin,  IL  &  Lower  Gwynedd,  PA. 
Resume  to:  HR,  Fourth  Technol¬ 
ogies,  Inc.,  585  Tollgate  Road, 
Suite  1,  Elgin,  IL  60123.  Specify 
location  desired,  JobID  DB964 
on  resume. 


Radian  Information  Systems  is 
seeking  system  analysts,  soft¬ 
ware  engineers  &  IT  consultants 
to  work  on  ERP,  data  ware¬ 
house,  mainframe  using  SAP, 
PeopleSoft,  VB,  ASP,  Java 
Script,  VSS,  VBScript,  Web 
Methods,  Cognos,  Unix,  Oracle 
etc.  BS/MS  with  exp.  Contact 
lnfo@RadiantlnfoSvs.com. 

EOE. 

Aero  Service  is  hiring:  Business/ 
MIS/Programmer/System  Ana¬ 
lysts,  Software,  Electronics,  El¬ 
ectrical,  Industrial,  Product  De¬ 
sign,  Mech,  Test  Engineers  & 
Professional  Technical  Recruit¬ 
ers.  BS/MS  and/or  exp.  required 
depending  on  positions.  Send 
resumes  to  iobs@acrocorn.com. 
EOE. 


Computers  -  Sr.  Programmer 
Analysts  needed.  Seeking 
qual.  candidates  possessing 
BS  or  equiv.  and/or  rel.  work 
exp.  Part  of  the  req.  rel.  exp. 
must  include  2  years  working 
with  JDA-MMS.  Duties  in¬ 
clude:  Develop  &  enhance 
current  existing  HOST  &  POS 
systems;  Work  with  JDA- 
MMS,  RPG/400,  CL/400, 

RPG/ILE  &  Visio  Technical. 
Exp.  in  retail  industry  pre¬ 
ferred.  Fwd  resume  &  refer¬ 
ences  to:  Cabelas,  Inc.,  Attn: 
HR,  One  Cabela  Drive, 
Sidney,  NE  69160. 

Software  Engineer,  Applications 
-  8a-5p,  40hrs/wk.  Dsgn,  dvlp  & 
implmt  s/ware  systms  &  solu¬ 
tions  w/hardware  interface  using 
ASP,  Java,  Javascript,  VB, 
Visual  Script,  Visual  Interdev, 
COM,  DCOM,  SQL  &  HTML. 
Req.  1  yr  exp  in  job  offd  or  as  IT 
Profl  &  Masters  or  equiv  in 
Comp  Applics/Sci/Engg,  Info 
Systms,  Electronics  Engg  or 
related  field.  In  lieu  of  Masters, 
Bach  deg  in  specified  majors  &  5 
yrs  progressive  work  exp  in  job 
offd  or  as  IT  profl  accepted. 
Resume:  Avalon  International, 
Inc.,  3550  Engineering  Dr.,  Ste 
260,  Norcross,  GA  30092. 

OH  Information  Management 
Firm  seeks  Software  Devel¬ 
oper  to  program,  develop  and 
implement  web  based  appli¬ 
cations,  customer  incentive 
systems.  Min  3  month  in¬ 
job/job  related  experience 
including:  ASP.Net;  C#;  VB 
Net;  SQL  Server;  XML  Web 
Services  requested.  Bachel¬ 
or's  degree  in  Computer  Sci¬ 
ence,  Computer  Engineering. 
Resumes  to:  Human  Resour¬ 
ces,  The  Mail  Room  Inc.  711 
West  Smith  Rd.,  Medina,  OH 
44256.  No  calls.  EOE. 

Software  Engineers  to  analyze, 
design,  develop,  test  appls  us¬ 
ing  Java,  JSP,  Servlets,  EJB,  X- 
ML,  HTML,  JavaScript,  C,  C++, 
Oracle  etc  under  UNIX,  Wind¬ 
ows  OS;  provide  architectural 
support,  create  and  integrate 
product  data  stores  into  Siebel 
product  module;  perform  Siebel 
CRM  implementations  and  ins¬ 
tall  Siebel  servers/clients;  Deve¬ 
lop,  enhance  components  of 
new/existing  appls  and  databas¬ 
es;  interact,  train  end  users.  Re¬ 
quire:  M.S.  or  foreign  equiv.  in 
CS  or  Engineering  (any  branch) 
with  1  yr  exp  in  Siebel.  F/T.  Trav¬ 
el  involved.  Competitive  salary. 
Resume  to:  HR,  ABZ  Consult¬ 
ing,  Inc.,  2600  Century  Parkway, 
StelOO,  Atlanta,  GA  30345. 

Stanford  Technology  Partners 
Inc.  is  an  IT  consulting  company 
with  its  clients  across  the  USA. 
We  seek  a  Peoplesoft  EPM 
Functional  Consultant.  Duties 
include  reporting  tool  selection; 
Identifying  legacy  system  report¬ 
ing  &  architecture;  conceptual 
sizing  of  hardware  configurations 
for  Peoplesoft  reporting  tools; 
creating  conceptual  design  docs; 
assisting  staff  on  docs,  identify¬ 
ing  gaps  in  source  system,  pre¬ 
sent  EPM  module  to  mgmt  and 
team  members  for  review  and 
implantation.  Job  is  located  in 
Tallassee,  Florida  or  unanticipat¬ 
ed  locations  throughout  the  USA. 
If  interested,  please  send  resu¬ 
me  to:  STPI,  289  Boston  Tpke  #6 
Shrewsbury,  MA  01545  e-mail: 
recruiter(S)stDincusa.com 

Maintenance  all  aspects 
of  installation,  testing, 
and  managing  network 
systems  in  the  business 
area;testing  of  computer 
hardware  and  supervis¬ 
ing  of  its  installation; 
testing  of  computer  sys¬ 
tems,  and  related  equip¬ 
ment.  Resume  A-Soft 
Scientific,  P.O.  Box 
1270,  Roswell,  GA 
30077. 

Programmer  Analyst  needed 
by  Soft.  Dev.  &  Conslt.  Co. 
Dsgn,  dvlp,  maintain  &  implmt 
various  applies  using 

COBOL/400,  RPG/400, 

CL/400,  QUERY/400  &  SQL/ 
400.  Job  to  be  performed  in 
Chicago,  IL  &  various  unantic¬ 
ipated  client  sites  in  US,  as 
assigned.  Req  2  yrs  exp  in 
job  offd,  40hrs/wk,  9a-5p,  M- 
F.  Respond  to  CEO,  Edgesys, 
Inc,,  555  West  Madison  St, 
Ste  1-2311,  Chicago,  IL 
60661 

Jr.  Programmer  Analyst. 

Analyze,  design,  develop,  & 
deploy  web  appl.  Using  SQL 
Server  database,  .NET 

Technology,  &  support  Client 
Server/Web  based  appl.  Using 
Visual  Basic,  COM/DCOM, 
SOAP,  Visual  C++,  MSSQL 
Server,  ASP  &  Java  Scripts. 
Req:  Bachelor  in  Comp.  Sci., 
Comp.  Eng. Or  Electrical  Eng. 
40hrs/wk.  Job/Interview  Site: 
Fullerton,  CA.  Send  resume  to 
Reliance  Technologies,  Inc. 
@2501 E.  Chapman  Ave.#280, 
Fullerton,  CA92831 

Oracle  Financials  Function¬ 
al  Consultant.  Individual  to 
deliver  full  life  cycle  imple¬ 
mentation  of  Oracle  E 
Business  suite  for  firm's 
clients  based  in  suburban 
Phila  &  other  locations. 
Qual.  applicants  must  pos¬ 
sess  BS  in  Accounting,  Bus. 
or  related  field  &  5  yrs.  as 
Oracle  Implementation  Con¬ 
sultant.  Submit  res.  &  jobs 
refs  .  to  HR,  ThoughtDigital, 
Inc.,  55  Grant  St.,  Ste.  370, 
Pittsburgh,  PA  15219.  No 
phone  calls. 

Database  Analyst  I  &  II:  Ensure 
highest  quality  SAP  BW  imple¬ 
mentation  by  providing  expertise 
&  guidance  to  clients  through 
extensive  on-site  support;  coor¬ 
dinate  &  design  database;  ana¬ 
lyze  requirements;  performance 
tuning;  oversee  &  implement 
security  measures;  create  man¬ 
uals  &  train  end  users.  Travel 
req.  Analyst  I  Req.  BS  in  Comp. 
Science,  MIS  or  related  field  &  1 
year  related  exp.  Analyst  II  Req. 
BS  in  Comp.  Science,  MIS  or 
related  field  &  2  years  related 
experience  w/  implementation  at 
client  site.  Competitive  Salary. 
Send  resume  to  Compendit, 
Attn.  HR.,  150  N.  Michigan,  Ste 
3400,  Chi,  IL  60601. 


Sr  Programmer  Analysts:  man¬ 
age  teams  to  analyze,  design, 
maintain  software  appls  using 
J2EE,  Java,  JSP,  ASP,  HTML, 
XML,  Oracle,  SQL  Server  on 
Windows/UNIX  OS;  perform 
requirements  analysis  and  con¬ 
duct  functional  testing/debug¬ 
ging;  document,  maintain  &  up¬ 
date  use  cases,  GUI  design, 
BPR  scenarios.  Require:  BS  or 
foreign  equiv.  in  CS/Engg. (any 
branch)  and  2.5  years  exp  in  IT 
OR  MS  in  CS/Engg  (any  branch) 
and  6  months  exp  in  IT.  Travel 
involved.  F/T  position.  Comp, 
salary.  Resume  to:  HR,  Quest 
America,  Inc.,  211  East  Ontario 
Street,  Suite  1800,  Chicago,  IL 
60611. 


Senior  SAP  Bl  Consultant 

Ensure  highest  quality  SAP 
Business  Intelligence  implemen¬ 
tation  by  providing  expertise  & 
guidance  to  client  through  ex¬ 
tensive  on-site  support;  require¬ 
ment  analysis;  technical  design 
&  architecture;  realization  &  con¬ 
struction;  deployment;  iterative 
&  incremental  development.  Tra¬ 
vel  req.  BS  in  Comp.  Science, 
MIS  or  related  field  &  3  years 
SAP  exp.  w/  multiple  years  SAP 
Bl  implementations.  Competitive 
Salary.  Send  resume  to 
Compendit  Attn  HR,  150  N. 
Michigan,  Ste  3400,  Chicago,  IL 
60601. 
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Programmer  1.  Under  supervi¬ 
sion,  design  and  implement 
applications  and  database  sup¬ 
port  tools  using  Java,  JSP  and 
stored  procedures  development 
environment;  maintain  and  ov¬ 
ersee  the  coding  standards; 
provide  technical  support  for 
resolution  of  customer  issues; 
and  function  as  mentor  to  other 
Software  Engineers  on  develop¬ 
ment  standards  and  methodolo¬ 
gy.  Must  have  Bachelor's  in 
Computer  Science,  Engg.  or 
related,  1  yr.  exp.,  and  experi¬ 
ence  must  include  working  with 
Java,  JSP,  Struts,  XSLT,  Web¬ 
sphere,  ClearCase,  Rational 
Rose  and  Crystal  Reports. 
Send  resume  to  Praxis  Tech¬ 
nology  Group,  LLC,  Attn:  Mark 
Loomis,  1500  NW  118th  St., 
Des  Moines,  IA  50325. 


itcareers.com 
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IT  PROFESSIONALS 
Manager 

(Glen  Mills,  PA  and  other  locations  throughout  the  United  States).  Lead 
strategy  and  operations  consulting  engagements  for  global  financial  ser¬ 
vices  clients,  including  finance  transformation,  re-engineering,  operations 
enhancement,  logistics  transformation,  merger  &  acquisition  strategy, 
strategic  sourcing,  product  strategy,  and  eProcurement  implementation. 
Support  sales  and  proposal  development  efforts.  Meet  with  clients  to 
assess  business  requirements  and  strategic  goals.  Lead  planning  efforts: 
scope  definition,  staffing,  work-plan  and  budget  management  Oversee 
execution  of  project  teams  and  initiatives,  including  supervision  of  subor¬ 
dinate  consultants.  Responsible  for  project  management  of  assigned 
components:  issue  resolution,  status  and  budget  tracking/reporting, 
report/presentation  development,  management  of  research  efforts,  quali¬ 
ty  assurance,  team  management,  and  performance  reviews.  Interact  with 
senior  client  management  to  provide  status  updates  and  address  critical 
project  issues.  Lead  formulation  and  presentation  of  key  findings  and  rec¬ 
ommendations  to  clients  on  operational,  financial,  and  strategic  issues. 
Supervise  and  lead  enterprise-wide  implementation  of  identified  opportu¬ 
nities.  Establish  post-implementation  profitability/savings  tracking  and 
performance  benchmarking  mechanism. 

$1 35,000/year.  Mon-Fri  9:00am-5:00pm.  The  minimum  requirements  are 
as  follows:  Bachelor's  degree  in  Economics,  Business,  Finance,  or 
Mathematics  plus  5  years  of  experience  in  the  job  offered  or  5  years  of 
experience  as  a  Senior  Consultant,  Consultant,  Analyst,  or  related  occu¬ 
pation.  Related  experience  must  include  international  work  in  financial 
services  industry,  management  of  cross-functional  teams,  and  enterprise¬ 
wide  implementations,  and  demonstration  of  client  relationship  develop¬ 
ment  and  growth  within  leading  financial  institutions. 

Please  send  your  resume,  referencing  Job  Order  Number  WEB447909  to 
the:  PA  CareerLink,  FLC  Unit,  235  W.  Chelten  Avenue,  Philadelphia,  PA 
19144.  EOE. 


SAP  Bl  Project  Manager 

Ensure  highest  quality  SAP 
Business  Intelligence  implemen¬ 
tation  by  providing  expertise  & 
guidance  to  client  through  ex¬ 
tensive  on-site  support;  under¬ 
stand  needs  &  req'ts  of  business 
process;  As  SAP  Bl  PM;  provide 
direction  to  both  consultants  & 
clients;  provide  knowledge  of 
SAP  product  implementation  via 
Bl  strategy  engagements  &  Bl 
implementation  projects;  enable 
clients  to  get  the  most  out  of 
SAP  Bl  investment;  develop  task 
schedule  &  coordinate  activities 
based  on  meeting  specific 
req'ts.  Travel  req.  BS  in  Comp. 
Science,  MIS  or  related  field  and 
4  years  SAP  exp.  w /  multiple 
years  SAP  Bl  implementations  & 
project  mgmt  exp.  Competitive 
salary.  Send  resume  to 
Compendit,  Attn:  HR,  150  N. 
Michigan,  Ste  3400,  Chicago,  IL 
60601. 


Sr  Software  Engineer.  De¬ 
sign  &  implement  s/ware 
apps.  Masters  or  equiv  in 
CS  or  similar  major.  Will 
accept  bachelors  plus  5 
yrs  progressive  exp  in  s / 
ware  eng’g  or  analyst  posi¬ 
tion  in  lieu  of  a  masters. 
Prior  exp  or  edu  must 
include  Java,  J2EE,  and 
WebObjects.  Contact  JR 
Scholl,  HR  Generalist,  Job 
#1915.36,  Academic  Mgmt 
Svcs,  463  Swansea  Mall 
Dr,  Swansea,  MA  02760. 


Programmer  Analysts,  Database 
Administrators,  Engineering 
Programmers,  Software  Engin¬ 
eers  needed-mult  openings  in 
locations  throughout  the  US  with 
at  least  one  year  exp  in  any  of 
the  following: 

•Cor  C++,  UNIX 

•  Perl,  Oracle,  UNIX 

•  QA  Analyst 

•  Oracle  Developer 

•  Java  Developer 

•  Visual  Basic,  ASP,  SQL  Server. 

•  SAP 

•  Oracle  Financials-  PeopleSoft 

•  Unix  or  NT  Administrator 
Unified  Business  Technologies, 
Inc.  ATTN:  Human  Resources 
41400  Dequindre  Road,  Suite 
105Sterling  Heights,  Ml  48314 
An  Equal  Opportunity  Employer 


Luceo,  Inc.  seeks  Programmer 
based  out  of  our  Naperville,  IL 
loc.  Design,  code,  test,  imple¬ 
ment,  &  maintain  new/revised 
programs,  web  pages,  scripts, 
database  applications,  reports, 
new  networks,  network  based 
applications  &  other  software. 
Use  SQL  server,  .Net  frame¬ 
work,  HTML,  XML,  WMI,  ASP, 
VB  Script  and  Dreamweaver 
MX.  Windows  NT/2000/2003 
servers;  networks,  TCP/IP  & 
other  LAN/WAN  protocols; 
Active  Directory  &  Exchange; 
Perl  script,  TCL/TK  &  Shell 
scripting  in  UNIX.  Some  travel 
required.  Must  have  Bachelor 
Information  Systems,  Business 
Administration  or  related  +  2  yrs 
relevant  exp.  Resume  to  Luceo, 
Inc.,  1431  Kallien  Avenue, 
Naperville,  IL  60540. 


Sr.  Systems  Analyst/Project  Mgr. 
needed  to  lead  analysis  of  client 
bus.  process/acctg.  require¬ 
ments  for  implement,  of  custom 
ERP  business/acctg.  software. 
Requires  degree  +  exper.  & 
Microsoft  Navision  Axapta  certi¬ 
fication.  Exper.  must  incl;  Axapta 
X++  programming;  Functional 
Requirements  &  Gap-fit  anal, 
reporting;  demonstrated  under¬ 
stand.  of  gen.  acctg.  proce¬ 
dures.  Based  in  Menlo  Park,  CA 
-  Travel  up  to  80%  in  N.  CA. 
Send  resume  to:  S.  Mauser, 
Specialists  in  Custom  Software, 
2120  Colorado  Ave.,  Suite  150, 
Santa  Monica,  CA  90404.  Must 
be  able  to  work  without  employ¬ 
er  sponsorship. 


Programmer  Analysts  to  ana¬ 
lyze,  design,  develop  appls  us¬ 
ing:  C,  VB,  JavaScript,  HTML/ 
DHTML,  EJB,  JSP,  ASP,  Serv¬ 
lets,  UML,  Oracle,  SQL  under 
Windows  OS;  perform  initial 
study  of  req  and  provide  feed¬ 
back;  provide  on  site  mainte¬ 
nance  support,  debug,  modify, 
fine  tune  and  perform  code  opti¬ 
mization.  Require:  BS  or  foreign 
equiv.  in  CS/Engg.(any  branch) 
&  2  yrs  of  exp.  in  IT.  Comp. 
Salary.  Travel  Involved.  F/T. 
Positions  available  in  Elgin,  IL& 
Lower  Gwynedd,  PA.  Resume 
to:  HR,  Fourth  Technologies, 
Inc.,  1108  N.  Bethlehem  Pike, 
Suite8,  Lower  Gwynedd,  PA 
1 9002.  Specify  location  desired 
&  JobID  PA964  on  resume. 


n SUCCESS 


join  the  $300  BILLION 

COMPUTER  SERVICE  BUSINESS. 

Find  out  how  you  can  invest  in  one  of 
Entrepreneur  Magazine's  “HOT  100 
Franchises”,  and  in  a  Franchise  Times 
“FAST  55”  company  Single,  Multi-Units 
and  Area  Development 
Opportunities  are  now  available. 
For  more  information  call 

or  visit  us  at  ^7) 

geeksoncall.com 


On  Call  America,  Inc. 


SENIOR  WEB 
DEVELOPMENT  ANALYST 

ADT  Security  Services,  Inc.  has 
an  opening  in  Boca  Raton, 
Florida  for  a  Senior  Web  Devel¬ 
opment  Analyst. 

Analyze  business  procedures 
and  problems  to  develop  specifi¬ 
cations  and  convert  them  to  pro¬ 
grammable  form  for  electronic 
data  processing.  Confer  with 
organizational  units  involved  to 
determine  specific  web  output 
requirements.  Study  existing 
data  systems  to  evaluate  effec¬ 
tiveness  and  develop  new,  or 
modify  current,  web  systems  to 
improve  production  workflow. 

Must  possess  at  least  a  bache¬ 
lor's  or  its  equivalent  in  Comput¬ 
er  Science  or  a  related  field,  and 
relevant  work  experience.  Ex¬ 
perience  must  include  Oracle, 
SQL  and  WebSphere  Adminis¬ 
tration. 

Resume  and/or  cover  letter 
must  reflect  each  requirement 
above  and  specify  reference 
code  SWDA/ZHS  or  it  will  be 
rejected. 

Forward  resume  to  Theresa 
Maia,  ADT  Security  Services, 
Inc.,  One  Town  Center  Road, 
Boca  Raton,  FL  33486. 


IT  Analyst  I 

Roxane  Laboratories,  Inc.  has 
an  immediate  opening  in  its 
Columbus,  Ohio  office  for  the 
position  of  IT  Analyst  I. 

Assists  with  maintaining  codes 
for  new  systems,  builds  install 
packages,  ensures  that  all  solu¬ 
tions  are  implemented  in  a  time¬ 
ly  manner  and  properly  tested, 
edits  application  component 
functional  specifications  and 
technical  design  documents  and 
assists  with  web  development. 

Must  possess  a  Bachelor's  de¬ 
gree  in  Management  Information 
Systems,  Business,  Computer 
Science  or  a  related  field  and 
relevant  experience,  including 
college  course/project  work  and/ 
or  work  experience  with  Power¬ 
Builder,  Enterprise  Java  Bean, 
C#  and  Delphi. 

Resume  and/or  cover  letter 
must  reflect  each  requirement 
above  and  specify  reference 
code  AD-GCD/GC0804  or  it  will 
be  rejected. 

Forward  resume  to  Bl  Staffing 
Center,  PO  Box  534,  Waltham, 
MA  02454.  Fax  number:  (781) 
663-2431.  Email: 
BIPI@BI-careers.com.  EOE. 


Database  Administrator.  Design, 
install,  administrate  and  main¬ 
tain  SQL  server  database  run¬ 
ning  warehouse  application  sys¬ 
tem  on  SQL  2000.  Develop  and 
support  company  web  based 
and  SQL  based  application 
using  NET,  ASP,  Java,  VB  and 
Access.  Perform  day-to-day 
SQL  Server  DBA  activities. 
Prepare  project  plan  and  sched¬ 
ules,  and  ensure  implementation 
of  projects.  Test  new  application 
programs/modification  to  ensure 
technical  applicability  and  speci¬ 
fication  compliance.  Require 
Bachelor  Degree  in  Computer 
Science  or  a  related  field  with 
minimum  of  4  years  related 
experience.  Apply  to:  Pleaser 
USA  Inc.,  679  S.  Placentia  Ave., 
Fullerton,  CA  92831,  Attn:  Ms. 
Fong. 


SOFTWARE  ENGINEERS  (12 
positions):  require  Bachelor's  or 
equivalent  in  Engineering/Com¬ 
puter  Science/Mathematics/Sci¬ 
ence  or  closely  related  field  with 
two  years  experience  providing 
skills  in  described  duties,  at 
$79,000  per  year.  Provide  on¬ 
site  consulting  in  design,  analy¬ 
sis  and  development  of  software 
for  legacy  systems  in  IBM  main¬ 
frame  environment;  develop¬ 
ment  and  administration  in  Or¬ 
acle,  DB2,  SQL  Server  and  Sy¬ 
base;  e-commerce  and  web  sys¬ 
tems  development  in  Microsoft, 
Java  and  related  technologies; 
network  management  systems 
development  with  Netscape  Ser¬ 
ver  and  related  tools;  SAP  R/3 
application  systems  on  Windows 
with  DOS  and  ABAP/4  and  relat¬ 
ed  modules.  40%  travel  to  client 
sites  in  the  United  States.  Mail 
resumes  to:  YASH  Technolo¬ 
gies,  Inc.,  605  17th  Avenue, 
Suite  1,  East  Moline,  IL  61244. 


Programmer,  Engineering  -  8a- 
5p;  40hrs/wk.  Integrate  con¬ 
struction  mgmt  &  civil  engg 
s/ware  w/Oracle  to  achieve  opti¬ 
mum  inventory  mgmt,  procure¬ 
ment  planning;  convert  technical 
specs  to  flow  charts,  modules, 
prgm  using  comp  aided  draw¬ 
ings,  Oracle  &  Developer  2000; 
test  prgm.  Req.  Bach  or  equiv 
w/major  in  Comp  Sci/Engg, 
Electronics,  Electrical,  Civil  or 
related  field  of  Engg,  &  1  yr  exp 
in  job  offd  or  as  Systms/ 
Software/IT  Profl  using  above 
comp  skills.  Resume:  Nextgen 
Infotech,  Inc.,  2090  Beaver  Ruin 
Rd.,  Ste.  500,  Norcross,  GA 
30071. 


IT  PROFESSIONALS 
Consultant 

(Glen  Mills,  Pennsylvania  and 
other  locations  throughout  the 
U.S.).  Implement  Supply  Chain 
Processes  in  areas  such  as  de¬ 
mand  planning,  inventory  plan¬ 
ning  &  management,  production 
planning  &  operations,  material 
replenishment,  and  logistics. 
Conduct  the  ”as-is"  analysis  of 
client's  current  processes  and 
systems,  utilize  industry  best- 
practices,  and  design  the  "to-be" 
processes.  Salary  is  $78,686per 
year.  Mon-Fri,  9:00  am  to  5:00 
pm.  The  position  requires:  Bach¬ 
elor's  degree  in  Business  Ad¬ 
ministration,  Engineering  (any), 
Information  Systems,  Math,  or 
Computer  Science  +  2  years  of 
experience  in  the  job  offered  or 
2  years  of  experience  as  a 
Consultant,  Systems  Analyst,  or 
Assistant  Manager  Related  ex¬ 
perience  must  include  at  least  6 
months  of:  Supply  Chain  Pro¬ 
cesses  and  Systems  including: 
"as-is"  analysis,  "to-be"  design, 
demand  planning,  inventory 
planning  &  management,  pro¬ 
duction  planning  &  operations, 
material  replenishment,  and 
logistics. 

Please  send  your  resume,  refer¬ 
encing  Job  Order  Number 
WEB448786  to  the:  PA  Career- 
link,  FLC  Unit,  235  W.  Chelten 
Avenue.  Philadelphia,  PA 
19144.  EOE. 


Position  for  Systems  Analyst 
Provide  requirements,  design 
and  implementation  deliverables 
and  estimates  to  accommodate 
business  needs  utilizing  knowl¬ 
edge  of  magazine  fulfillment  pro¬ 
cessing.  Identify  and  evaluate 
opportunities  to  improve  existing 
system  processes.  Review  test 
plans,  data  and/or  results  pre¬ 
pared  and  executed  by  applica¬ 
tions  development  for  accuracy 
and  thoroughness.  Provide  ana¬ 
lytical  and  technical  assistance 
to  resolve  production  problems. 
Provide  functional  supervision, 
technical  direction  and  leader¬ 
ship  to  other  team  members.  Util¬ 
izes  expertise  in  Assembler,  Co- 
bol,  CICS,  JCL  and  TSO/  ISPF, 
to  develop  and  maintain  quality 
computer  systems  on  time  and 
within  budget.  40  hours  per 
week.  Hours  are  8:00  a.m.  to 
5:00  p.m..  Monday  through 
Friday.  Must  have  Master's 
Degree  in  Computer  Information 
Systems  or  equivalent.  Pay  is 
$60,000  per  year.  Job  Order  No. 
FL-2552563.  Job  located  in  Tam¬ 
pa,  FI.  Send  resume  to  Agency 
for  Workforce  Innovation,  PO. 
Box  10869,  Tallahassee,  FI. 
32302. 
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However,  Verizon  has  successful¬ 
ly  trialed  VPLS  in  its  lab  and 
could  offer  services  based  on  it 
within  10  to  24  months,  a 
spokesman  says.  SBC  offers 
point-to-point  Ethernet  services 
now,  but  by  adopting  VPLS  it  also 
plans  to  offer  point-to-multipoint. 
Other  carriers  such  as  Time 
Warner  already  offer  VPLS  ser¬ 
vices,  and  Pennsylvania  provider 
TelCove  says  it  plans  to  offer 
them  soon. 

VPLS  is  in  the  final  stages  of 
review  by  the  IETp  and  once  it  is 
approved,  equipment  vendors 
such  as  Alcatel,  Cisco,  Extreme 
Networks,  Foundry  Networks  and 
Riverstone  Networks  that  have 
already  produced  VPLS  gear 
based  on  drafts  of  the  standard 
can  work  toward  interoperability 
This  is  important  to  carriers  that 
don’t  want  to  be  locked  into  buy¬ 
ing  equipment  from  a  single  ven¬ 
dor.  Approval  is  anticipated  by 
early  next  year  at  the  latest,  says 
Marc  Lasserre,  co-author  of  the 
VPLS  proposal  and  chief  scientist 
for  Riverstone. 

Once  the  standard  is  in  place, 
service  providers  would  consid¬ 
er  the  technology  more  seriously 
as  a  solid  base  on  which  to  build 
new  services,  says  Mark  Bieb- 
erich.an  analyst  with  The  Yankee 
Group.  “You  will  see  some  of 
these  Tier  1  service  providers 
commit  to  VPLS  offerings  within 
six  to  12  months,”  he  says. 

Meanwhile,  two  smaller  U.S. 
carriers  already  offer  VPLS  ser¬ 
vices,  Masergy  in  Dallas  and 
Sure  West  in  Roseville,  Calif.These 
companies  have  the  advantage 
of  not  having  existing  data  ser¬ 
vice  offerings  that  VPLS  would 
compete  against, says  Erin  Dunn, 
an  analyst  with  Vertical  Systems 
Group.  VPLS  doesn’t  cut  into 
their  existing  accounts  and  does¬ 
n’t  require  phasing  out  other 
technologies  such  as  TDM,  frame 
relay  and  ATM. 

Another  drawback  for  carriers 
is  that  the  service  requires  Ether¬ 
net  connections  from  customer 
sites  to  carrier  points  of  pres¬ 
ence,  and  Ethernet  is  far  from 
universally  available.  “The  likeli¬ 
hood  of  finding  a  service  pro¬ 
vider  with  Ethernet  access  every¬ 
where  you  need  it  is  unlikely 
Dunn  says. 

Part  of  the  problem  is  that  high- 
bandwidth  Ethernet  access  re¬ 
quires  fiber,  and  that  resource  is 
available  mostly  in  cities. 
Masergy  expands  its  service  area 
by  using  devices  that  carry 
Ethernet  over  copper  wires 


instead.  Tasman  Networks’  gear 
presents  customers  with  two 
Ethernet  ports  and  can  plug  into 
a  T-l  or  T-3  on  the  WAN  side,  run¬ 
ning  Ethernet  over  the  wire  via 
point-to-point  protocol,  says  Jim 
Brunetti,  Masergy’s  director  of 
engineering. 

Because  copper  has  a  slower 
top  speed,  using  it  limits  the  top 
speed  of  Ethernet  services  that 
can  run  over  it.  On  fiber,  speeds 
can  reach  1G  bit/sec. 

Coming  attractions 

One  of  the  major  attractions  of 
VPLS-based  services  is  that  they 
cost  less  for  more  bandwidth 
than  other  transport  services.  For 
example,  a  customer  upgrading 
a  T-l  frame  relay  network  to  a 
10M  bit/sec  Ethernet  service 
would  get  nearly  seven  times  the 
bandwidth  for  just  double  the 
price,  says  David  Parks  of  The 
Yankee  Group. 

It’s  possible  to  offer  VPLS-like 
services  using  Ethernet  access 
and  MPLS  backbones  without 
actually  using  VPLS.  For  example, 
Verizon  offers  Transparent  LAN 
Service  (TLS),  which  can  create 
multipoint-to-multipoint  LANs  in 
metropolitan  networks,  but  not 
between  metropolitan  networks, 
says  Vin  Alesi,  a  distinguished 
member  of  technical  staff  for  the 
carrier’s  data  services  architec¬ 
ture  group.  TLS  can  unite  two  or 
more  metropolitan  Ethernet 
LANs  via  a  point-to-point  link,  but 
they  remain  separate  islands  and 
do  not  afford  truly  meshed  con¬ 
nections,  he  says.  Traffic  can  get 
between  the  islands  but  not  be 
directly  routed  to  individual 
machines.  VPLS  would  enable 
this  LAN  emulation  across  wide 
areas,  not  just  metropolitan 
regions,  Alesi  says. 

Beyond  supporting  fully  mesh¬ 
ed  networks, VPLS  eliminates  the 
need  for  customers  to  share 
Layer  3  routing  information  with 
their  carriers,  which  can  be  a 
headache  or  could  violate  cor¬ 
porate  policy  With  MPLS  VPNs, 
for  instance,  customers  must 
route  their  traffic  into  their  pro¬ 
viders’  networks  and  deal  with 
advanced  routing  protocols  such 
as  Border  Gateway  Protocol. 

With  VPLS,  they  deal  with  the 
services  as  if  it  were  part  of  their 
Ethernet  network.  The  demarca¬ 
tion  point  can  be  an  Ethernet 
switch  rather  than  a  router. 

Bigger  site  support 

Another  plus  is  that  VPLS 
makes  it  possible  to  support  very 
large  numbers  of  sites.  As 
demand  for  Ethernet  services 
grows,  the  underlying  Ethernet 


iThe  skinny  on  VPLS 

Virtual  Private  LAN  Service  technology  tries 
to  overcome  some  of  the  inherent  short¬ 
comings  of  WANs,  namely  complexity,  lim¬ 
ited  bandwidth  and  application  performance 
degradation. 

VPLS  combats  complexity  by  presenting  cor¬ 
porate  networks  with  an  Ethernet  interface  they 
plug  into  their  routers  or  switches  and  then  sim¬ 
ulating  a  LAN  routing  environment  among  cor¬ 
porate  sites. 

Because  access  to  VPLS  is  Ethernet,  band¬ 
width  can  scale  in  increments  of  1M  bit/sec  up 
to  the  speed  of  the  wire,  giving  customers  the 
option  to  buy  the  bandwidth  they  need  to  pro¬ 
vide  the  performance  they  want. 

Performance  degradation  can  be  overcome 
by  use  of  QoS  features  of  Multi-Protocol  Label 
Switching  (MPLS),  VPLS’  underlying  backbone 
technology. 

VPLS  combines  the  Layer  2  nature  of  Ethernet 
with  Layer  2  MPLS  label-switched  paths  to 
create  the  impression  of  a  circuit  known  as  a 
pseudo-wire.  These  customer  pseudo-wires  are 
mapped  through  MPLS  label-switched  paths 
across  the  carrier  backbone. 

Traffic  from  individual  servers  and  desktops  in 


customer  networks  is  switched  based  on  their 
media  access  control  addresses,  with  the 
providers’  edge  routers  keeping  track  of  them 
and  making  sure  traffic  from  them  is  switched 
along  the  appropriate  paths. 

VPLS  defines  the  encapsulation  of  traffic  from 
the  Ethernet  access  segment  of  the  network  to 
the  MPLS  core  to  maintain  service  quality  need¬ 
ed  to  maintain  acceptable  application  perfor¬ 
mance. 

By  creating  a  fully  routed  environment,  VPLS 
provides  any-to-any,  fully  meshed  networks.  To 
create  similar  networks  using  dedicated  cir¬ 
cuits,  frame  relay  or  ATM  involves  complex  net¬ 
work  design  and  multiple  permanent  virtual  cir¬ 
cuits,  which  can  be  expensive. 

Simplifying  fully  meshed  networks  for  cus¬ 
tomers  is  a  benefit  of  VPLS,  but  it  requires  work 
on  the  carrier's  side  to  set  up  the  full  mesh  of 
label-switched  paths  among  its  edge  routers.  It 
also  requires  provisioning  each  customer's  ser¬ 
vice  within  these  paths.  Several  groups  are 
working  on  standards  for  managing  VPLS  net¬ 
works  to  make  the  task  easier  for  service 
providers, 

—  Tim  Greene 


How  VPLS  extends  LANs 


A  carrier  edge  router  maps 
traffic  from  many  customers 
onto  psuedo-channels  within  an 
MPLS  path  to  the  edge  router 
nearest  the  destination  site. 


P- 


Virtual  Private  LAN  Service  customers  send  traffic  among  sites  as  if  they  are  all 
on  the  same  LAN. 

0 - 

Customers  plug  into  an 
Ethernet  switch  to  send 
traffic  onto  the  carrier 
network. 


Destination  edge  routers 
sort  traffic  based  on  MAC 
addresses  to  determine 
which  customer  to  send  it 
to  and  send  it  along  as 
Ethernet  traffic. 


Switch 


I 


mechanisms  for  separating  traf¬ 
fic  become  limited  by  the  num¬ 
ber  of  VLANs  a  network  can  sup¬ 
port,  about  4,000.  VPLS  defines 
the  means  to  extend  that  num¬ 
ber  into  the  millions,  which 
makes  it  likely  that  more  carriers 
will  support  VPLS  as  Ethernet 
services  grow  in  popularity 
Ethernet  services  in  the  U.S. 
generated  less  than  $500  million 
in  carrier  revenue  this  year,  and 
VPLS  is  an  insignificant  amount 
of  that  sum,  says  Dunn,  but  she 
projects  that  Ethernet  services 
revenue  will  grow  to  $1.3  billion 
by  2007.  This  includes  point-to- 
point  and  metropolitan  Ethernet 
services  from  SBC,  Verizon  and 
BellSouth. 


VPLS  also  can  offer  separate 
service  quality  to  different  appli¬ 
cations,  which  would  be  key  to 
running  VoIP  on  these  networks, 
Parks  says.  And  VPLS  gives  carri¬ 
ers  controls  to  offer  strong  SLAs. 

As  carriers  consider  VPLS,  they 
are  looking  for  a  way  to  make 
it  compatible  with  other  Layer  2 
access  technologies  such  as  ATM 
and  frame  relay  with  Ethernet 
access,  Parks  says.  That  means 
one  site  could  be  connected  to 
the  MPLS  network  via  frame 
relay  another  via  Ethernet  and  a 
third  via  ATM,  and  all  three  sites 
could  connect  with  the  others 
over  an  MPLS  backbone.  This 
would  let  carriers  that  already 
have  frame  relay  and  ATM  cus¬ 


tomers  migrate  them  gradually 
rather  than  forcing  a  change  to 
Ethernet  at  all  their  sites.  SBC 
says  it  wants  to  offer  such  ser¬ 
vices  and  has  the  means  to  do  so 
using  Cisco  switches. 

Even  when  all  the  bugs  are 
worked  out  of  VPLS,  the  popular¬ 
ity  of  other  new  technologies 
such  as  IP  VPNs  could  hold  back 
VPLS.“I  don’t  think  VPLS  will  ever 
achieve  the  status  of  frame  relay?’ 
Parks  says. 

Senior  Editor  Denise  Pappalardo 
contributed  to  this  story. 
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impersonators 

continued  from  page  1 

younger  than  the  5-foot-l  1-inch, 
48-year-old  Gates,  charges  a  mini¬ 
mum  of  $2,500  per  appearance 
but  makes  more  for  film  work 
and  commercials.  Nevertheless, 
he  has  no  plans  to  end  his 
career  as  a  civil  design  engineer. 

Ranlett,  a  bus  driver,  often  navi¬ 
gates  a  route  that  slices  through 
the  Microsoft  campus  in 
Redmond,  Wash.  His  personnel 
file  includes  a  letter  that  pre¬ 
vents  him  from  identifying  him¬ 
self  as  Gates  lest  passengers  get 
confused,  excited  or  hostile. 

But  away  from  the  bus  Ranlett 
over  the  past  seven  years  has 
used  his  likeness  to  Gates  to 


16  It's  weird,  it’s  like, 
it’s  me.99 

Gates  look-alike  John  Ranlett 
says  when  he  sees  the  real 
Gates  it's  like  an  out-of-body 
i  experience. 


6  6  People  think  they 
are  talking  to  Bill, 
and  they  just  start 
shaking.  9  9 

Steve  Sires 

Bill  Gates  impersonator 

land  parts  in  a  TV  commercial 
with  Donald  Trump  and  a 
music  video  for  the  song 
“Pentium”  by  Weird  A1  Yankovic. 
His  financial  gains  have  picked 
up  in  the  past  three  to  four 
years,  he  says,  but  not  enough 
to  make  it  a  full-time  gig. 

Ironically,  Ranlett  and  Sires  are 
devoted  iMac  users.  Neither  has 
met  Gates,  though  Microsoft  has 
hired  them  as  stand-ins  on 
video  shoots  and  for  promo¬ 
tional  stunts. 

Ranlett  once  dressed  up  in  an 
MSN  butterfly  costume  and 
passed  out  CDs  in  Bellevue, 
Wash.,  which  borders  Redmond. 

“I  don’t  know  why  Bill  didn’t 
want  to  get  into  it,”  Ranlett  says. 

Sires,  who  has  trademarked  his 


ml  Bill,  Bill  Gates  is  pictured  in  the  center 
photo.  The  photo  on  the  left  is  impersonator  Steve 
Sfires,  os  tha  right  is  impersonator  John  Ranlett. 


gig  as  Bogus  Bill  2.0  and 
Microsortof,  also  has  done  four 
in-house  videos  for  Sun.“They 
like  to  poke  fun  at  Bill,”  he  says. 

Both  men  say  they  have  limits 
and  won’t  do  anything  that  puts 
Gates  in  a  bad  light,  although 
Sires  pushed  the  envelope  when 
he  played  the  Microsoft  founder 
in  a  2002  “mockumentary”  about 
police  misconduct  and  cover-up 
in  Los  Angeles  called  “Nothing 
So  Strange.”  In  the  graphic  open¬ 
ing  scene,  Gates/Sires  is  fatally 
shot  in  the  head  by  an  assassin 
and  lies  bleeding  in  the  street. 

“It  wasn’t  morally  in  question. 

It  didn’t  put  Bill’s  name  in  a  bad 
light,  so  I  had  no  problem  doing 
it,”  Sires  says.  He  still  gets  hired 
by  Microsoft  even  though  a 
company  spokesman  was  quot¬ 
ed  after  the  movie’s  release  say¬ 
ing, “It  is  very  disappointing  that 
a  moviemaker  would  do  some¬ 
thing  like  this.” 

Sires  says  the  moviemaker, 
Brian  Flemming,  still  gets  asked 
how  he  ever  convinced  Gates  to 
appear  in  the  film. 

Ranlett  says  he  turned  down  a 
chance  last  summer  to  be  in  a 
Fox  feature  film. The  catch  was 
that  he  would  have  to  get  terror¬ 
ized  by  rabid  Rottweilers  and  a 
band  of  psycho  clowns. 

“I  was  suppose  to  sit  behind  a 
desk  and  this  guy  comes  in  and 
he  is  ticked  off  because  he  has 
to  keep  buying  upgrades  and 
new  computers  to  run  the 
upgrades  and  then  the  dogs  and 
clowns  come  in  and  tear  him 
apart,”  he  recounts.“I  thought 
that  fit  in  the  mean-spirited  cate¬ 
gory  and  I  won’t  do  that.” 

Both  men  have  done  plenty 
of  other  gigs  as  Gates,  though  it  is 
their  everyday  encounters  with 
the  public  in  which  things  turn 
surreal. 

“People  think 
they  are  talking 
to  Bill  and  they 
just  start  shak¬ 
ing,”  Sires  says. 
“They  want  to 
tell  you  what 
they  have  done, 
they  ask  you  for 
advice.  It  hap¬ 


pens  in  the  weirdest  places. 

Why  would  people  think  Bill 
Gates  is  shopping  at  Costco  or 
eating  at  KFC?  It’s  crazy’  He  says 
the  most  common  question  is 
about  borrowing  money 

Sires  didn’t  know  who  Gates 
was  until  people  started  pester¬ 
ing  him  with  questions.  In  1998, 
his  wife  gave  him  a  newspaper 
ad  searching  for  a  Bill  Gates 
look-alike,  which  he  promptly 
threw  away  But  his  wife 
answered  the  ad  for  him. 

“The  best  part  is  that  you  get  to 
meet  a  lot  of  new  people  and  I 
get  to  go  all  over  the  world,”  Sires 
says. 

Ranlett,  who  enjoys  remodel¬ 
ing  his  house,  being  outdoors 
and  watching  World  War  II  docu¬ 
mentaries,  says  he  loves  the 
work  and  has  fun  with  the 
resemblance. 

“I  did  a  Christmas  party  once, 
and  an  old  lady  sat  next  to  me 
and  told  me  how  much  she 
admired  me  and  what  I  had 
accomplished  in  my  life.” 

Out  of  respect  for  the  woman, 
Ranlett  fessed  up  to  his  actual 
identity 

One  day  while  walking  near 
the  Microsoft  campus,  a  woman 
stopped  her  car  in  traffic  and 
jumped  out  to  take  his  picture. 
And  once  while  sitting  near  the 
front  row  for  a  presentation  by 
Gates  friend  and  bridge  rival 
Warren  Buffett,  he  called  out  to 
those  staring  at  him, “I’m  Bill’s 
cousin  Billy  Bob  from 
Tennessee.” 

But  Ranlett,  who  is  the  same 
height  but  two  years  older  than 
Gates,  admits  that  sometimes 
when  he  sees  the  billionaire  it  is 
like  an  out-of-body  experience. 
One  day  he  was  on  the  Micro¬ 
soft  campus  working  on  a  video 
shoot  and  Gates  walked  across 
the  hall  about  30  feet  in  front  of 
him. 

“It’s  weird,  it’s  like,  it’s  me,”  he 
says. 

Stranger  yet,  Ranlett  says  a  co¬ 
worker  of  his  looks  like 
Microsoft  co-founder  Paul  Allen. 

“He  looks  more  like  Paul  Allen 
than  I  look  like  Bill  Gates. What 
are  the  odds?”  ■ 


Feds  seek  software 
assurance 

■  BY  GRANT  GROSS 


WASHINGTON,  D.C.  —  U.S.  government  agencies  need  to  better 
understand  the  vulnerabilities  of  the  software  they’re  buying,  said  IT 
workers  from  several  government  agencies  during  a  software  assur¬ 
ance  forum  in  Washington,  D.C.,last  week. 

The  forum, sponsored  by  the  Department  of  Defense  and  the  Depart¬ 
ment  of  Homeland  Security  was  the  first  step  in  a  long-term  discussion 
between  government  agencies  and  vendors  on  how  to  create  more 
secure  software, said  Joe  Jarzombek,  deputy  director  for  software  assur¬ 
ance  in  the  Defense  Department’s  Information  Assurance  Directorate 
and  one  of  the  event’s  organizers. 

The  forum  was  prompted  by  “a  growing  awareness  of  the  fact  that 
we’ve  got  a  lot  of  vulnerabilities  in  the  software  we’re  acquiring,” 
Jarzombek  said. 

A  major  concern  among  government  IT  workers  is  a  need  to  under¬ 
stand  how  and  where  software  is  developed.  In  many  cases,  out¬ 
sourced  workers  developed  the  software  that  government  agencies 
use,  Jarzombek  said,  and  government  purchasers  need  to  know  that 
information. “We  are  essentially  inheriting  risks  we  don’t  know  about,” 
he  said. “We  need  to  better  understand  those  risks.  When  we  put  soft¬ 
ware  into  our  network  we  are  placing  an  agent  of  whatever  company 
developed  it  on  our  networks.” 

Jack  Danahy  CEO  of  security  software  company  Ounce  Labs,  com¬ 
pared  the  software  defense  agencies  buy  to  the  employees  they  hire. 
Government  agencies  can  run  background  checks  on  employees,  he 
noted.  “There  is  no  means  to  get  [security]  clearance  for  an  applica¬ 
tion,”  he  said.“You  never  get  to  do  a  background  check.” 

The  two-day  meeting,  closed  to  reporters,  was  attended  by  about  230 
people,  including  employees  of  the  FBI,  State  Department  and  CIA. 
Microsoft  and  Oracle  were  among  the  software  vendors  represented. 

Danahy  who  moderated  a  panel  discussion  on  vendors  and  agencies 
working  more  closely  together, said  the  forum  showed  an  interest  from 
government  agencies  to  become  more  active  in  purchasing  decisions. 
“It  was  very  clear  that  software  assurance  was  top  of  the  mind  for  these 
people,”  Danahy  said.  “The  software  companies  recognize  that  every¬ 
thing  they  do  is  going  to  help,  but  this  problem  is  by  no  means  close  to 
being  solved.” 

Software  developers  should  expect  more  security  demands  from  cus¬ 
tomers  in  the  near  future,  says  Mike  Rasmussen,  principal  analyst 
Forrester  Research.  Government  agencies  are  under  pressure  from 
Congress  to  improve  their  cybersecurity  and  agencies  are  moving 
toward  making  more  security  demands  of  software  vendors. 

A  second  software  assurance  forum  is  planned  for  February. 


Gross  is  a  correspondent  with  the  IDG  News  Service. 
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VORTEX  2004:  SETTING  THE  IT  AGENDA  is  an  interactive  experience  showcasing  a  diversity  of  informed 
opinion  and  fresh  insights  on  the  future  of  the  nearly  $1  trillion  enterprise  IT  market.  VORTEX  is  an  immersive 
dialogue  among  chief  executives,  chief  information  officers,  leading  analysts  and  investors  on  issues  including: 

■  What  shape  will  the  post-client/server  IT  world  take? 

■  How  are  leading  vendors  like  IBM,  Microsoft,  Oracle,  SAP,  EMC,  HP,  Cisco,  and  others  positioning 
themselves  for  market  dominance  and  what  opportunities  are  created  for  innovators? 

■  Are  vendors  and  IT  executives  in  sync  on  key  issues  and  directions? 

■  How  can  early  adopters  create  competitive  advantage? 

Through  a  series  of  frank  one-on-one  interviews,  engaging  Q&A’s  and  spirited  panel  discussions,  John  Gallant  and 
Geoffrey  Moore  will  analyze  diverging  vendor  strategies  and  compare  their  visions  with  the  current  needs  of  IT. 
All  to  help  you  determine  what  you  need  to  design  and  buy  for  your  enterprise  to  prosper. 


For  more  information  and  to  register,  visit  www.vortex.net/V4A4S  or  call  800-643-4668 

SOME  OF  THE  SPEAKERS  YOU'LL  HEAR  FROM  AT  VORTEX  2004  INCLUDE: 


Shai  Agassi  Member  of  the  Executive  Board,  SAP  AG  ■  Dr.  Francine  Berman  Director,  San  Diego  Supercomputer  Center  ■  Jeffrey  Blumenfeid  Partner,  Antitrust 
and  Intellectual  Property,  Crowell  &  Moring  LLP  ■  Howard  Elias  i  EVP,  Corporate  Marketing  &  Office  of  Technology,  EMC  Corporation  ■  John  Gantz  SVP  &  Chief 
Research  Officer,  IDC  ■  Umang  Gupta  I  Chairman  &  CEO,  Keynote  Systems  ■  John  Hagel  Management  Consultant  &  Author  *  Donaid  A.  Haile  CIO,  Fidelity 
Investments  Systems  Company  •  Steve  R.  Hanna  Information  Officer,  Global  Sales,  Services  &  Marketing,  GM  IS  &  S,  General  Motors  ■  Sam  Jadaiiah  General 
Partner,  Mohr  Davidow  Ventures  ■  Mitchell  Kertzman  \  Partner,  Hummer  Winblad  Venture  Partners  ■  David  Kirkpatrick  Senior  Editor,  Internet  &  Technology,  Fortune 
Magazine  ■  Scott  Kriens  l  Chairman  &  CEO,  Juniper  Networks  *  John  Landry  Chairman  &  CTO,  Adesso  Systems,  Inc  •  Dan'l  Lewin  Corporate  Vice  President, 
Business  Development,  DPE  Division,  Microsoft  Corporation  ■  Christopher  Lynch  President  &  CEO,  Acopia  Networks  ■  Marten  Mickos  CEO,  MySQL  AB  ■ 
L.  David  Passmore  Research  Director,  Network  and  Telecom  Strategies,  The  Burton  Group  ■  Charles  E.  Phillips,  Jr.  President  &  Member  of  the  Board,  Oracle 
Corporation  ■  Ron  Ponder  !  Executive  VP  &  CIO,  WellPoint  ■  Shane  V.  Robison  I  EVP,  Chief  Strategy  &  Technology  Officer,  Hewlett-Packard  •  Joe  Schoendorf 
Partner,  Accel  Partners  *  Jonathan  Schwartz  I  President  &  COO,  Sun  Microsystems  ■  Stratton  Sclavos  Chairman  &  CEO,  VeriSign  ■  Steven  Silberstein  Managing 
Director,  Lehman  Brothers  ■  Peter  Solvik  i  Managing  Director,  Sigma  Partners  ■  Mike  Volpi  SVP  &  General  Manager,  Routing  Technology  Group,  Cisco  Systems, 
Inc.  ■  Irving  Wladawsky-Berger  VP,  Technology  &  Strategy,  IBM  Corporation 
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SGO’s  case  doesn't  fit,  but  the  lawyers  won’t  quit 

L 


ast  week  The  SCO  Group  held  its 
quarterly  earnings  conference 
call  and  announced  it  will  cut 
expenses  to  ensure  it  will  have 
enough  cash  to  pursue  its  lawsuit 
against  IBM.  Apparently  the  company 
burned  through  $18.6  million  with  a 
third-quarter  loss  of  $7.4  million  on 
revenue  of  $11.2  million.  Of  that  total,  $7.2  million 
was  in  legal  expenses. 

SCO  now  has  $42  million  in  cash  left  and  has  cut  a 
deal  with  the  law  firm  Boise  Schiller  and  Flexner  to 
cap  its  legal  fees  at  a  maximum  of  $31  million  in 
return  for  the  legal  lads  getting  a  bigger  cut  of  the 
spoils  should  they  win. 

Last  week  on  Network  World  Fusion  (www.nwfu 
sion.com,  DocFinder:  3548), SCO’s  CEO  Dari  McBride 
was  quoted  saying  he  blamed  the  “company’s  ongo¬ 
ing  litigation  with  Linux  vendor  Novell,  Inc.  for  the 
SCOsource  division’s  poor  performance  during 
2004.”  McBride  also  said, “We  continue  to  believe  that 
Novell’s  claims  have  greatly  impacted  our  ability  to 
achieve  traction  in  this  business.” 

Indeed. Traction.  McBride  is  prone  to  the  creative 
abuse  of  words  —  for  example, “The  litigation  busi¬ 
ness  is  now  in  control  from  a  cost  standpoint.” 

The  company  is  just  being  its  usual  manipulative 
self.  Could  it  be  that  SCO’s  reality  is  so  distorted  by 


its  own  corporate  greed  that  it  can  no  longer  distin¬ 
guish  between  the  spin  and  the  real  world? 

According  to  The  Wall  Street  Journal,  the  spin  doc¬ 
toring  is  in  full  swing,  with  the  lawyers  now  saying 
that  the  General  Public  License  (GPL)  is  invalid  — 
and  I’m  not  making  this  up  —  because  it  is  pre¬ 
empted  by  U.S.  federal  copyright  law! 

The  argument  (if  the  term  can  be  applied  to  such 
convoluted  and  obviously  calculating  flim-flam)  is 
that  the  amended  copyright  law  only  lets  a  user 
make  one  back-up  copy  of  software.This,the  lawyers 
argue  makes  the  GPL  void  under  U.S.  law. 

Now  (and  this  probably  won’t  surprise  you),  I  am 
not  a  lawyer  but  wasn’t  that  amendment  designed  to 
extend  user’s  rights  rather  than  limit  them?  In  other 
words,  it  didn’t  say  you  couldn’t  copy  it  said  you 
could  make  limited  duplicates  for  back-up  purposes. 

How,  then,  can  that  amendment  be  considered  to 
limit  the  GPL  when  the  amendment  was  intention¬ 
ally  permissive  rather  than  restrictive? 

What  1  find  interesting  is  that  an  otherwise  presti¬ 
gious  law  firm  would  be  so  willingly  involved  in  a 
case  that  is  so  transparently  artificial,  but  I  guess  this 
is  the  kind  of  behavior  that  makes  all  those  lawyer 
jokes  so  funny 

This  defense  is  as  ridiculous  as  when,  in  the  farci¬ 
cal  O.J.  Simpson  federal  case,  he  made  it  appear  it 
was  really  really  difficult  to  put  on  those  gloves,  thus 


“proving”  the  gloves  weren’t  his.  Defense  lawyer 
Johnnie  Cochran  then  intoned, “If  the  glove  doesn’t 
fit, you  must  acquit.” 

Interestingly  it  turns  out  that  those  little  rhymes  have 
a  reason:  In  a  study  conducted  in  1998  psychologist 
Matthew  McGIone  at  Lafayette  College  in  Pennsyl¬ 
vania  gave  students  a  list  of  rhyming  aphorisms  along 
with  non-rhyming  analogs  such  as  “Woes  unite  foes” 
and  “Misfortunes  unite  foes.”  McGIone  found  that  the 
students  rated  the  rhyming  aphorisms  as  the  more 
accurate  descriptions  of  human  behavior. 

McGIone  called  it  the  “rhyme  as  reason”  effect. 
Curiously,  the  effect  vanished  when  he  asked  the 
students  to  first  evaluate  the  aphorisms’ “poetic 
qualityf  Once  the  students  did  they  no  longer  auto¬ 
matically  associated  the  sound  of  the  phrase  with 
its  truthfulness. 

Don’t  be  surprised  if  sometime  in  the  near  future 
you  hear  SCO’s  lawyers  coming  out  with  something 
like  “If  the  code  was  a  rip,  you  must  not  acquit”  or 
maybe  “McDarl  is  right,  it  is  SCO’s  code  byte  for  byte.” 

Perhaps  the  lawyers  should  more  accurately 
intone  “If  the  code  was  lifted,  our  firm  must  be 
gifted,"  And  the  worst  part?  Even  if  SCO  loses,  the 
lawyers  still  win. 

No  more  lawyer  jokes  to  backspin@gibbs.com.  They 
are  too  depressing. 


By  Adam  Gaffin 

Sound  familiar? 

Bryce  Yehl  makes  a  trip  over  to  Office¬ 
Max  to  pick  up  some  cheap  shelving  for 
the  five  more  used  servers  he’s  bringing 
home.  But  now  he  needs  some  GigE  cards  with  802.1Q  support  for  a  network  seg¬ 
mentation  project:  “. . .  the  goal  being  to  split  things  up  so  that  the  roughly  17  net¬ 
worked  devices  in  the  house  have  limited  exposure  to  each  other,  hopefully  stop¬ 
ping  worms  and  malware  from  spreading.  Newegg  has  theTRENDnetTEG- 
PCITXR  for  $12.99,  which  sounds  like  a  winner.”  Read  more  of  his  account  at 
www.nwfusion.com,  DocFinder:  3530. 

Today's  best  waste  of  time 

CrunchTime  is  the  game  to  play  when  your  co-workers  are  out  of  control: 

“You  know  that  feeling  when  all  their  brains  have  exploded  and  they  have  been 
transformed  into  blood-thirsty  zombies,  infected  by  an  intergalactic  computer 
virus  disguised  as  a  check-this-out  mail  attachment?”  Uses  Flash.  Play  it  at 
DocFinder:  3532. 

Sun's  full-time  blogger 

Any  Sun  employee  who  wants  one  can  get  a  free  Weblog  via  the  company's 
Java-based  Roller  blog  aggregator.  Last  week,  the  company  hired  a  full-time 
employee,  Dave  Johnson,  to  develop  and  deploy  the  software.  Read  all  about  it  at 
DocFinder:  3533. 

Gmail  as  file  system 

So  what  do  you  do  with  a  gig  of  storage?  If  you’re  Richard  Jones,  you  figure  out 
how  to  use  Google's  new  e-mail  system,  which  gives  users  that  much  storage,  to 
•tore  files:  “GmailFS  provides  a  mountable  Linux  file  system  which  uses  your 
Gmail  account  as  its  storage  medium.  GmailFS  is  a  Python  application  and  uses 


the  FUSE  userland  file  system  infrastructure  to  help  provide  the  file  system  and 
libgmail  to  communicate  with  Gmail.  GmailFS  supports  most  file  operations  such 
as  read,  write,  open,  close,  stat,  symlink,  link,  unlink,  truncate  and  rename.This 
means  that  you  can  use  all  your  favorite  Unix  command  line  tools  to  operate  on 
files  stored  on  Gmail  (such  as  cp,  Is,  mv,  rm,  In,  grep  etc.  etc.).”  DocFinder:  3534. 

Feelings,  nothing  more  than  feelings! 

“Who  should  work  with  whom?”  is  a  paper  that  posits  the  notion  that  personali¬ 
ty  may  be  more  important  than  technical  skills  in  determining  the  success  of  large 
software-development  efforts.The  authors  conclude  that  determining  the  scores 
of  potential  development  team  members  on  the  Myers-Briggs  test  should  be  con¬ 
sidered  as  carefully  as  the  development  skills  of  those  team  members: 

“IS  managers  should  consider  selecting  personnel  so  there  is  personality  het¬ 
erogeneity  between  the  team  leader  and  other  team  members  in  the  social-inter¬ 
action  and  information-gathering  dimensions.Thus,  the  project  leader  and  mem¬ 
bers  should  be  selected  such  that  all  four  of  these  personality  categories  are 
represented:  extrovert-intuitive,  extrovert-sensing,  introvert-intuitive  and  intro¬ 
vert-sensing  . . .”  Read  the  whole  thing  at  DocFinder:  3536. 

End  users 

Mike  McBride  loves  his  end  users,  but  sometimes  ...  He  recalls  when  a  depart¬ 
ment  head  came  “this  close"  to  buying  a  database  upgrade  without  involving  IT: 
“One  of  the  first  things  I  discovered  when  I  took  a  serious  look  at  the  upgrade  he 
was  selling  was  that  the  technical  specifications  for  both  client  and  server  side  of 
the  database  were  beyond  anything  we  had  in  the  building  at  that  time!  In  all  those 
meetings  and  conversations,  no  one  had  bothered  to  check  that  out.  We  were 
seriously  considering  the  purchase  of  a  database  system  that  we  couldn’t  even 
run  . . .”  Read  more  at  DocFinder:  3550. 

Have  no  tear,  'Net  Buzz  returns  next  week!  You'll  normally  catch  Gaffin  online  at 
www.  nw fusion,  com /compendium/. 
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LET  QWEST  iQ  NETWORKING  TRANSFORM  YOUR  NETWORK 
INTO  ONE  WELL-OILED,  SMOOTH-RUNNING  MACHINE. 


Some  say,  “No  way.’*  We  say,  “Bring  it  on.”  Qwest  iQ  Networking"”  makes  disparate  transport  technologies  act 
like  a  single,  state-of-the-art  network.  Now  your  ATM,  frame,  private-line  and  IP-based  networks  can  all  work 
together  as  one  seamless  entity.  Better  security,  more  robust  hosting  capabilities  and  more  diverse 
solutions  are  at  your  beck  and  call  with  our  converged,  intelligent  OC-192  MPLS-based  network.  Which  means 
you’ll  also  get  more  out  of  the  applications  you’ve  already  invested  so  much  time,  money  and  energy  in.  And 
you’ll  be  able  to  adapt  more  readily  and  proficiently  with  new  technologies  like  VoIP.  So  give  us  a  call  when 
you’re  ready  to  advance  your  network  to  a  new  level  of  converged  harmony.  We’re  waiting  in  the  wings  with 
the  tools  to  make  it  happen. 


1  800-506-0663  or  visit  qwest.com/networksolutions 


Spirit 

VOICE  ...  U  ION  S  DATA  Q  L  If  T  I  0  N  S  INTERNET  SOLUTIONS  MANAGED 

''S'': 

Qwest  iQ  Networking;  Qwest  iQ  Networking  is  a  suite  of  WAN  services  with  domestic  and  international  availability,  depending  on  services  selected.  Recurring  fees  vary,  depending.;/; 
on  services  ordered.  Additional  equipment  may  be  required.  All  trademarks  are  the  property  of  Qwest  Communications  International  Inc.  ©2004  Qwest.  All  rights  reserved.  ;  ■ 
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ProCurve  Networking  is  pleased  to  a 
wonderful  words:  Affordable  Gigabit. 


marriage 


ProCurve  Networking  by  HP.  Gigabit  is  better  when  it  works  at  the  edge  (not  just  the  core)  of  your  network,  it's  better  when  it  brings  impressive  network 
performance  to  your  gigabit-enabled  PCs,  notebooks  and  servers.  And  its  better  still  when  it  virtually  eliminates  network  bottlenecks  and  congestion — and 
does  that  at  a  truly  extraordinary  price.  So  all  your  applications,  including  high-bandwidth  apps  like  video  and  CAD,  are  delivered  to  users  in  seconds, 
not  minutes— for  cents,  not  dollars.  ProCurve  Networking.  Secure.  Mobile.  Muitiservice.  And  affordable. 
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HP  ProCurve  SWITCHES: 
2800,  4100  AND  5300  SERIES 

•  Open  standards  enabling  interoperability 
and  ease  of  integration 

•  Flexibility  of  stackable  or  chassis 
configuration 

•  Lifetime  warranty* 

•  Low  cost  of  ownership 

•  Legendary  service  and  support 


Trade  in  a  current  switch  or  hub  and 
save  up  to  $400  on  a  new  HP  gigabit 
switch.  Call  or  click  to  learn  more. 


CALL 

800-975-7684  Ref.#l 

CLICK 

hp.tradeups.com/procurvepromo 

VISIT 

your  local  HP  reseller 

For  as  king  as  you  own  the  product.  ©2004  Hewlett-Packard  Development  Company,  L.P. 
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